Insecure Storage of User Credentials in Lawson Financials 8.0

Insecure Storage of User Credentials in Lawson Financials 8.0

CVE-2002-2301 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:P/A:N

Lawson Financials 8.0, when configured to use a third party relational database, stores usernames and passwords in a world-readable file, which allows local users to read the passwords and log onto the database.

Learn more about our Aws Audit.