Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Oracle Application Server Credentials Management Errors Vulnerability - CVE-2004-1366 - Vulnerability Database
Oracle Application Server

Oracle Application Server Credentials Management Errors Vulnerability - CVE-2004-1366

Medium
Reference: CVE-2004-1366
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2004-1366
Title: Oracle Application Server Credentials Management Errors Vulnerability
Overview:

Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file which could allow local users to gain DBA privileges.