[Forgot Password]
Login  Register Subscribe

23631

 
 

115083

 
 

97147

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2008-5326

Date: (C)2008-12-04   (M)2017-08-08
 
CVSS Score: 4.4Access Vector: LOCAL
Exploitability Subscore: 3.4Access Complexity: MEDIUM
Impact Subscore: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL











The ClearQuest Maintenance Tool in IBM Rational ClearQuest 7.0.0 before 7.0.0.4 and 7.0.1 before 7.0.1.3 on Windows allows local users to obtain (1) user and (2) database passwords by using a password revealer utility on a field containing a series of asterisks.

Reference:
BID-32577
SECUNIA-32847
PK30938
clearquest-editboxes-info-disclosure(46994)

CPE    4
cpe:/a:ibm:rational_clearquest:7.0.1.1
cpe:/a:ibm:rational_clearquest:7.0.1
cpe:/a:ibm:rational_clearquest:7.0.0.1
cpe:/a:ibm:rational_clearquest:7.0.0.0
...
CWE    1
CWE-255

© 2013 SecPod Technologies