CVE-2003-1588

Name of the Vulnerable Software and Affected Versions Sun Cluster versions 2.2

Description The issue concerns the storage of database credentials in cleartext within a cluster configuration file when HA-Oracle or HA-Sybase DBMS services are utilized. This allows local users to access sensitive information by reading the file.

Recommendations For Sun Cluster version 2.2, consider restricting access to the cluster configuration file to minimize the risk of exploitation. As a temporary workaround, limit local user privileges to prevent unauthorized access to sensitive information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.