CVE-2006-2430
N/A
N/A
Summary
IBM WebSphere Application Server 5.0.2 and earlier, 5.1.1 and earlier, and 6.0.2 up to 6.0.2.7 records user credentials in plaintext in addNode.log, which allows attackers to gain privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www-1.ibm.com/support/search.wss?rs=0&q=PK16492&apar=only
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012064
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012009
- http://www-1.ibm.com/support/docview.wss?rs=0&dc=DB550&q1=PK16492&uid=swg1PK22416&loc=en_US&cs=utf-8&lang=
- http://securityreason.com/securityalert/910
- http://www.vupen.com/english/advisories/2006/1736
- http://secunia.com/advisories/20032
- http://archives.neohapsis.com/archives/bugtraq/2006-05/0175.html
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24011773
- http://www.osvdb.org/25372
References
- http://www-1.ibm.com/support/search.wss?rs=0&q=PK16492&apar=only
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012064
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012009
- http://www-1.ibm.com/support/docview.wss?rs=0&dc=DB550&q1=PK16492&uid=swg1PK22416&loc=en_US&cs=utf-8&lang=
- http://securityreason.com/securityalert/910
- http://www.vupen.com/english/advisories/2006/1736
- http://secunia.com/advisories/20032
- http://archives.neohapsis.com/archives/bugtraq/2006-05/0175.html
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24011773
- http://www.osvdb.org/25372
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.