Vulnerabilities > CVE-2005-2845 - Unspecified vulnerability in Ariba Spend Management Solutions
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Ariba Spend Management System sends the username and password to the server in plaintext in a POST request, which allows remote attackers to obtain sensitive information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://marc.info/?l=bugtraq&m=112552683829473&w=2
- http://marc.info/?l=bugtraq&m=112552683829473&w=2
- http://marc.info/?l=bugtraq&m=112559982413287&w=2
- http://marc.info/?l=bugtraq&m=112559982413287&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22116
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22116