CVE-2012-4832

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Information Server; Infosphere Business Glossary
Vendor: CVE Published:; 31 January 2013

Summary

Information Services Framework (ISF) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 and InfoSphere Business Glossary 8.1.1 and 8.1.2 does not have an off autocomplete attribute for the password field on the login page, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21623501

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/78906

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jan 31, 2013
Vulnerability Reserved
Sep 6, 2012