Cleartext Server Password Retention Vulnerability in IBM Rational ClearCase

Cleartext Server Password Retention Vulnerability in IBM Rational ClearCase

CVE-2014-6134 · LOW Severity

AV:L/AC:H/AU:N/C:P/I:N/A:N

IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throughout the installation procedure, which might allow local users to obtain sensitive information by leveraging access to the installation account.

Learn more about our Cis Benchmark Audit For Server Software.