Vulnerabilities > CVE-2006-5600 - Unspecified vulnerability in Axalto Protiva 1.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Axalto Protiva 1.1, possibly only non-commercial versions, stores passwords in plaintext in files with insecure permissions, which allows local users to gain privileges by reading the passwords from (1) KeyTool\keytool.config or (2) webapps\protiva\WEB-INF\classes\authserver.config.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://securityreason.com/securityalert/1793
- http://securityreason.com/securityalert/1793
- http://www.securityfocus.com/archive/1/449891/100/0/threaded
- http://www.securityfocus.com/archive/1/449891/100/0/threaded
- http://www.securityfocus.com/bid/20755
- http://www.securityfocus.com/bid/20755
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29839
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29839