Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2899

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2009-2899
Last Modified 24 Dec 2012 12:00:00
Published 05 Dec 2012 12:55:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2009-2899

Summary

The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3 allows local users to obtain the database password by listing the process and its arguments.

Vulnerable Systems

Application

  • Springsource Hyperic Hq 4.2

  • Vmware Hyperic Hq 4.2


References

MISC - https://jira.hyperic.com/browse/HHQ-1031

CONFIRM - http://support.springsource.com/security/CVE-2009-2899

MISC - http://communities.vmware.com/thread/348773


Last Updated: 27 May 2016 10:49:52