Vulnerabilities > CVE-2006-5600 - Local Information Disclosure vulnerability in Axalto Protiva 1.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Axalto Protiva 1.1, possibly only non-commercial versions, stores passwords in plaintext in files with insecure permissions, which allows local users to gain privileges by reading the passwords from (1) KeyTool\keytool.config or (2) webapps\protiva\WEB-INF\classes\authserver.config.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |