PT-2009-3826 · Ibm · Ibm Rational Clearcase

Published

2009-04-14

Updated

2017-08-17

CVE-2009-1292

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Rational ClearCase versions 7.0.0.x through 7.0.0.4 IBM Rational ClearCase versions 7.0.1.x through 7.0.1.3 IBM Rational ClearCase versions 7.1.x through 7.1.0.0

Description The issue in IBM Rational ClearCase allows local users to obtain credentials by listing the process, as a username and password are placed on the command line. This occurs on Linux and AIX systems.

Recommendations For versions 7.0.0.x through 7.0.0.4, update to version 7.0.0.5 or later. For versions 7.0.1.x through 7.0.1.3, update to version 7.0.1.4 or later. For versions 7.1.x through 7.1.0.0, update to version 7.1.0.1 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2009-1292

Affected Products

Ibm Rational Clearcase

PT-2009-3826 · Ibm · Ibm Rational Clearcase

CVE-2009-1292

Weakness Enumeration

Related Identifiers

Affected Products

References · 7