CVE Reference: CVE-2014-0842

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2014-0842

Description:
The account-creation functionality in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 places the new user's default password within the creation page, which allows remote attackers to obtain sensitive information by reading the HTML source code.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/90706

CONFIRM
  http://www-01.ibm.com/support/docview.wss?uid=swg21665005


Return to the previous page.