CVE-2009-5066

CVE-2009-5066 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

twiddle.sh in JBoss AS 5.0 and EAP 5.0 and earlier accepts credentials as command-line arguments, which allows local users to read the credentials by listing the process and its arguments.

Learn more about our User Device Pen Test.