Cleartext Storage of LDAP Credentials in IBM SONAS 1.3

Cleartext Storage of LDAP Credentials in IBM SONAS 1.3

CVE-2012-0706 · LOW Severity

AV:N/AC:M/AU:S/C:P/I:N/A:N

IBM Scale Out Network Attached Storage (SONAS) 1.3 before 1.3.2.3 requires cleartext storage of LDAP credentials without recommending a less privileged LDAP account, which might allow attackers to obtain sensitive server information by leveraging root access to a client machine.

Learn more about our Cis Benchmark Audit For Server Software.