CVE-2006-2430 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-2430
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2430

Description: IBM WebSphere Application Server 5.0.2 and earlier, 5.1.1 and earlier, and 6.0.2 up to 6.0.2.7 records user credentials in plaintext in addNode.log, which allows attackers to gain privileges.

CVE Status: Candidate

References: SREASON http://securityreason.com/securityalert/910 SAID Secunia Advisory: SA20032 OSVDB 25372 CONFIRM http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012064 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012009 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24011773 BUGTRAQ http://archives.neohapsis.com/archives/bugtraq/2006-05/0175.html AIXAPAR http://www-1.ibm.com/support/docview.wss?rs=0&dc=DB550&q1=PK16492&uid=swg1PK22416&loc=en_US&cs=utf-8&lang= http://www-1.ibm.com/support/search.wss?rs=0&q=PK16492&apar=only

Return to the previous page.