BEA WebLogic < 8.1.0 SP4 Information Disclosure
Medium Nessus Network Monitor Plugin ID 2615
SynopsisThe remote host may give an attacker information useful for future attacks.
DescriptionThe remote host is running BEA WebLogic. This version of WebLogic is vulnerable to an information disclosure flaw. Specifically, failed logins yield information regarding authentication scheme, validity of user ID, and more.
SolutionUpgrade to WebLogic 8.1.0 SP4 or higher.