2 matches found
Security Bulletin: IBM Security Identity Manager Adapters passwords exposed in log files (CVE-2014-8923)
Summary It is possible to configure IBM Security Identity Manager Active Directory Adapter for Windows in such a way that the logging of certain activities could result in the log files containing passwords that are in clear text Vulnerability Details CVEID: CVE-2014-8923 DESCRIPTION: IBM Securit...
CVE-2014-8923
CVE-2014-8923 affects IBM Security Identity Manager Active Directory adapter and IBM Tivoli Identity Manager Active Directory adapter on Windows; the issue is that, when certain log/trace levels are enabled, the administrator password is stored in clear text in log files, allowing a local user to...