Vulnerabilities > CVE-2007-1940 - Unspecified vulnerability in IBM Tivoli Business Service Manager 4.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
NONE Availability impact
NONE Summary
IBM Tivoli Business Service Manager (TBSM) 4.1 before Interim Fix 1 logs passwords in plaintext, which allows local users to obtain sensitive information by reading (1) ncisetup.db or (2) msi.log.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://osvdb.org/34770
- http://secunia.com/advisories/24763
- http://www.securityfocus.com/bid/23298
- http://www.securitytracker.com/id?1017869
- http://www.vupen.com/english/advisories/2007/1248
- http://www-1.ibm.com/support/docview.wss?uid=swg24015473
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33426