CVE-2014-3089

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Directory Server; Rational Directory Administrator
Vendor: CVE Published:; 22 August 2014

Summary

The RDS Java Client library in IBM Rational Directory Server (RDS) 5.1.1.x before 5.1.1.2 iFix004 and 5.2.x before 5.2.1 iFix003, and Rational Directory Administrator (RDA) 6.0 before iFix002, includes the cleartext root password, which allows local users to obtain sensitive information by reading a library file.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21681554

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/94255

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/69300

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Aug 22, 2014
Vulnerability Reserved
Apr 29, 2014