CVE-2003-1093

Medium

4.6/10

Summary

BEA WebLogic Server 6.1, 7.0 and 7.0.0.1, when routing messages to a JMS target domain that is inaccessible, may leak the user's password when it throws a ResourceAllocationException.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Dec 31, 2003

CVE-2003-1093

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS