The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, and 8.5.2.1, as used in the Lotus Notes client and separately, might allow local users to obtain sensitive information by leveraging the persistence of cleartext password strings within process memory.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21635218 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/82656 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2013-06-21 07:55
Updated : 2017-08-28 18:33
NVD link : CVE-2013-0534
Mitre link : CVE-2013-0534
JSON object : View
CWE
CWE-255
Credentials Management Errors
Products Affected
ibm
- sametime
- lotus_sametime