PT-2018-4124 · Ibm · Ibm Rational Focal Point

Published

2018-04-27

Updated

2018-06-07

CVE-2014-0841

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Rational Focal Point versions 6.4.0 through 6.6.0

Description The issue allows context-dependent attackers to obtain cleartext password values via a brute-force attack due to the use of a weak algorithm to hash passwords.

Recommendations For versions 6.4.0 through 6.6.0, update the password hashing algorithm to a stronger one to prevent brute-force attacks.

Fix

Inadequate Encryption Strength

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-326

Related Identifiers

CVE-2014-0841

Affected Products

Ibm Rational Focal Point

PT-2018-4124 · Ibm · Ibm Rational Focal Point

CVE-2014-0841

Weakness Enumeration

Related Identifiers

Affected Products

References · 3