CVE-2008-3857

2008-08-28T17:41:00
ID CVE-2008-3857
Type cve
Reporter cve@mitre.org
Modified 2017-08-08T01:32:00

Description

The Base Service Utilities component in IBM DB2 9.1 before Fixpak 5 retains a cleartext password in memory after the database connection that sent the password is fully established, which might allow local users to obtain sensitive information by reading a memory dump.