Vulnerabilities > CVE-2006-1210 - Unspecified vulnerability in Micromuse Netcool Neusecure 3.0.236
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The web interface for IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 includes the MySQL database username and password in cleartext in body.phtml, which allows remote attackers to gain privileges by reading the source. NOTE: IBM has privately confirmed to CVE that a fix is available for these issues.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |