Lucene search

[email protected]CVE-2003-1588

HistoryFeb 08, 2010 - 8:30 p.m.

CVE-2003-1588

2010-02-0820:30:00

CWE-255

[email protected]

web.nvd.nist.gov

sun cluster 2.2

ha-oracle

ha-sybase

cleartext storage

sensitive information disclosure

nvd

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.4%

JSON

Sun Cluster 2.2, when HA-Oracle or HA-Sybase DBMS services are used, stores database credentials in cleartext in a cluster configuration file, which allows local users to obtain sensitive information by reading this file.

Affected configurations

NVD

Node

sunclusterMatch2.2sparc

CPENameOperatorVersion
sun:clustersun clustereq2.2

CPE	Name	Operator	Version
sun:cluster	sun cluster	eq	2.2

References

sunsolve.sun.com/search/document.do?assetkey=1-66-201460-1

exchange.xforce.ibmcloud.com/vulnerabilities/56617

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.4%

JSON

Related for CVE-2003-1588

cvelist1 nvd1