CVE-2009-1292

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 14-04-2009 06:26

Last modified: - 26-09-2022 12:26

Total changes: - 2

Description

UCM-CQ in IBM Rational ClearCase 7.0.0.x before 7.0.0.5, 7.0.1.x before 7.0.1.4, and 7.1.x before 7.1.0.1 on Linux and AIX places a username and password on the command line, which allows local users to obtain credentials by listing the process.

Common Vulnerability Scoring System (CVSS)

AV:L/AC:L/Au:N/C:P/I:N/A:N

Low

Attack complexity

Local

Attack vector

None

Availability

Low

Confidentiality

None

Integrity

Privileges required

Scope

User interaction

2.1

Base score

3.9

2.9

Exploitability score

Impact score

Verification logic

Reference

34689-Vendor Advisory
34483-
PK75832-Patch, Vendor Advisory
1022035-
ADV-2009-1017-
clearcase-ucmcq-information-disclosure(49836)-

Keywords

CVE-2009-1292

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2009-1292

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures