2 matches found
CVE-2006-5161
IBM Client Security Password Manager stores and distributes saved passwords based upon the title of a website, which allows remote attackers to obtain username and password credentials by changing the title of an HTML page...
CVE-2006-5161
The CVE concerns IBM Client Security Password Manager, where saved passwords are distributed based on the title of a website. The underlying issue is a trust/validation weakness: an attacker can obtain credentials by altering the HTML page title, effectively steering the manager to reveal usernam...