4.4

CVE-2008-5326

The ClearQuest Maintenance Tool in IBM Rational ClearQuest 7.0.0 before 7.0.0.4 and 7.0.1 before 7.0.1.3 on Windows allows local users to obtain (1) user and (2) database passwords by using a password revealer utility on a field containing a series of asterisks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmRational Clearquest Version7.0.0.0
   MicrosoftWindows
IbmRational Clearquest Version7.0.0.1
   MicrosoftWindows
IbmRational Clearquest Version7.0.0.2
   MicrosoftWindows
IbmRational Clearquest Version7.0.0.3
   MicrosoftWindows
IbmRational Clearquest Version7.0.1
   MicrosoftWindows
IbmRational Clearquest Version7.0.1.1
   MicrosoftWindows
IbmRational Clearquest Version7.0.1.2
   MicrosoftWindows
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.28% 0.191
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.4 3.4 6.4
AV:L/AC:M/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/32847
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1PK30938
Patch
Vendor Advisory
http://www.securityfocus.com/bid/32577
https://exchange.xforce.ibmcloud.com/vulnerabilities/46994