PT-2006-5899 · Ibm · Ibm Client Security Password Manager

Lus Miguel Ferreira Da Silva

Published

2006-10-03

Updated

2018-10-17

CVE-2006-5161

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions IBM Client Security Password Manager (affected versions not specified)

Description The issue allows remote attackers to obtain username and password credentials by changing the title of an HTML page, as the password manager stores and distributes saved passwords based on the title of a website.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-5161

Affected Products

Ibm Client Security Password Manager

PT-2006-5899 · Ibm · Ibm Client Security Password Manager

CVE-2006-5161

Related Identifiers

Affected Products

References · 4