Описание
Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, (2) XSQLConfig.xml and (3) settings.xml, which allows local users to obtain sensitive information.
Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, (2) XSQLConfig.xml and (3) settings.xml, which allows local users to obtain sensitive information.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-2292
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21342
- http://marc.info/?l=bugtraq&m=112129177927502&w=2
- http://secunia.com/advisories/15991
- http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html
- http://www.red-database-security.com/advisory/oracle_jdeveloper_plaintext_password.html
EPSS
Процентиль: 56%
0.00331
Низкий
CVE ID
Связанные уязвимости
nvd
больше 20 лет назад
Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, (2) XSQLConfig.xml and (3) settings.xml, which allows local users to obtain sensitive information.
EPSS
Процентиль: 56%
0.00331
Низкий