Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0742

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2012-0742
Last Modified 10 Apr 2012 12:21:52
Published 09 Apr 2012 04:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0742

Summary

IBM Tivoli Event Pump 4.2.2, when the LOG_REQUESTS and VALIDATE_SOAP_USERS options are enabled, places credentials into the AOPSCLOG (aka AOPLOG) data set, which allows local users to obtain sensitive information by reading the data.

Vulnerable Systems

Application

  • Ibm Tivoli Event Pump 4.2.2


References

XF - tep-aopsclog-info-disclosure(74641)

AIXAPAR - OA38586


Last Updated: 27 May 2016 10:58:24