Vulnerabilities > CVE-2007-1940 - Unspecified vulnerability in IBM Tivoli Business Service Manager 4.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
IBM Tivoli Business Service Manager (TBSM) 4.1 before Interim Fix 1 logs passwords in plaintext, which allows local users to obtain sensitive information by reading (1) ncisetup.db or (2) msi.log.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://osvdb.org/34770
- http://osvdb.org/34770
- http://secunia.com/advisories/24763
- http://secunia.com/advisories/24763
- http://www.securityfocus.com/bid/23298
- http://www.securityfocus.com/bid/23298
- http://www.securitytracker.com/id?1017869
- http://www.securitytracker.com/id?1017869
- http://www.vupen.com/english/advisories/2007/1248
- http://www.vupen.com/english/advisories/2007/1248
- http://www-1.ibm.com/support/docview.wss?uid=swg24015473
- http://www-1.ibm.com/support/docview.wss?uid=swg24015473
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33426
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33426