PT-2015-4684 · Emc · Emc Captiva Capture

Published

2015-02-14

Updated

2017-09-08

CVE-2015-0519

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions EMC Captiva Capture versions 7.0 through 7.0 before patch 25 EMC Captiva Capture versions 7.1 through 7.1 before patch 13

Description The issue concerns the InputAccel Database installation process, which stores a cleartext InputAccel SQL password in a log file. This allows local users to access sensitive information by reading the file.

Recommendations For EMC Captiva Capture version 7.0, apply patch 25 to resolve the issue. For EMC Captiva Capture version 7.1, apply patch 13 to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2015-0519

Affected Products

Emc Captiva Capture

PT-2015-4684 · Emc · Emc Captiva Capture

CVE-2015-0519

Weakness Enumeration

Related Identifiers

Affected Products

References · 4