Back to search
CVE-2008-5328
Published: Dec 5, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The ClearQuest Maintenance Tool in IBM Rational ClearQuest before 7 stores the database password in cleartext in an object in a ClearQuest connection profile or export file, which allows remote authenticated users to obtain sensitive information by locating the password object within the object tree during an import process.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
PK65908
vendor-advisory
x_refsource_AIXAPAR
32847
third-party-advisory
x_refsource_SECUNIA
clearquest-maintenance-info-disclosure(46995)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now