10
CVE-2006-2430
- EPSS 2.84%
- Veröffentlicht 17.05.2006 10:06:00
- Zuletzt bearbeitet 16.06.2026 22:24:59
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
IBM WebSphere Application Server 5.0.2 and earlier, 5.1.1 and earlier, and 6.0.2 up to 6.0.2.7 records user credentials in plaintext in addNode.log, which allows attackers to gain privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Websphere Application Server Version5.0.0
Ibm ≫ Websphere Application Server Version5.0.1
Ibm ≫ Websphere Application Server Version5.0.2
Ibm ≫ Websphere Application Server Version5.1.0
Ibm ≫ Websphere Application Server Version5.1.1
Ibm ≫ Websphere Application Server Version6.0.2
Ibm ≫ Websphere Application Server Version6.0.2.1
Ibm ≫ Websphere Application Server Version6.0.2.2
Ibm ≫ Websphere Application Server Version6.0.2.3
Ibm ≫ Websphere Application Server Version6.0.2.4
Ibm ≫ Websphere Application Server Version6.0.2.5
Ibm ≫ Websphere Application Server Version6.0.2.6
Ibm ≫ Websphere Application Server Version6.0.2.7
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.84% | 0.848 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://archives.neohapsis.com/archives/bugtraq/2006-05/0175.html
http://secunia.com/advisories/20032
http://securityreason.com/securityalert/910
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012064
http://www.vupen.com/english/advisories/2006/1736
http://www-1.ibm.com/support/docview.wss?rs=0&dc=DB550&q1=PK16492&uid=swg1PK22416&loc=en_US&cs=utf-8&lang=
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24011773
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24012009
http://www-1.ibm.com/support/search.wss?rs=0&q=PK16492&apar=only
http://www.osvdb.org/25372