PT-2014-3927 · Ibm · Ibm Algo Credit Limits
Publicado
2014-07-07
·
Atualizado
2018-10-09
·
CVE-2014-0894
CVSS v2.0
3.5
Baixa
| Vetor | AV:N/AC:M/Au:S/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Algo Credit Limits (ACLM) versions 4.5.0 through 4.7.0 before 4.7.0.03 FP5
Description
The issue allows context-dependent attackers to discover database credentials by reading the
DbUser and DbPass fields in an XML document.Recommendations
For versions 4.5.0 through 4.7.0 before 4.7.0.03 FP5, update to version 4.7.0.03 FP5 or later to resolve the issue.
Exploit
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Algo Credit Limits