CVE-2014-6134

Currently unrated

Key Information:

Vendor: IBM
Status: Installation Manager
Vendor: CVE Published:; 25 March 2015

Summary

IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throughout the installation procedure, which might allow local users to obtain sensitive information by leveraging access to the installation account.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21688450

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 25, 2015
Vulnerability Reserved
Sep 2, 2014