Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-6134

Overview

Vulnerability Score 1.2 1.2
CVE Id CVE-2014-6134
Last Modified 25 Mar 2015 04:47:58
Published 24 Mar 2015 09:59:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity HIGH
Authentication NONE

CVE-2014-6134

Summary

IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throughout the installation procedure, which might allow local users to obtain sensitive information by leveraging access to the installation account.

Vulnerable Systems

Application

  • Ibm Installation Manager 1.8.1.0

  • Ibm Rational Clearcase 8.0.0

  • Ibm Rational Clearcase 8.0.0.1

  • Ibm Rational Clearcase 8.0.0.10

  • Ibm Rational Clearcase 8.0.0.11

  • Ibm Rational Clearcase 8.0.0.12

  • Ibm Rational Clearcase 8.0.0.13

  • Ibm Rational Clearcase 8.0.0.2

  • Ibm Rational Clearcase 8.0.0.3

  • Ibm Rational Clearcase 8.0.0.4

  • Ibm Rational Clearcase 8.0.0.5

  • Ibm Rational Clearcase 8.0.0.6

  • Ibm Rational Clearcase 8.0.0.7

  • Ibm Rational Clearcase 8.0.0.8

  • Ibm Rational Clearcase 8.0.0.9

  • Ibm Rational Clearcase 8.0.1

  • Ibm Rational Clearcase 8.0.1.1

  • Ibm Rational Clearcase 8.0.1.2

  • Ibm Rational Clearcase 8.0.1.3

  • Ibm Rational Clearcase 8.0.1.4

  • Ibm Rational Clearcase 8.0.1.5

  • Ibm Rational Clearcase 8.0.1.6


References

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21688450


Last Updated: 27 May 2016 11:08:12