CVE-2005-0432
BEA WebLogic Server 7.0 Service Pack 5 and earlier, and 8.1 Service Pack 3 and earlier, generates different login exceptions that suggest why an authentication attempt fails, which makes it easier for remote attackers to guess passwords via brute force attacks.
Date published : 2005-02-15
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA05-74.00.jsp