Insecure Password Printing in BEA WebLogic Portal 8.1

Insecure Password Printing in BEA WebLogic Portal 8.1

CVE-2005-1745 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The UserLogin control in BEA WebLogic Portal 8.1 through Service Pack 3 prints the password to standard output when an incorrect login attempt is made, which could make it easier for attackers to guess the correct password.

Learn more about our Web App Pen Testing.