Vulnerabilities > CVE-2008-0441 - Unspecified vulnerability in IBM Tivoli Business Service Manager 4.1.1

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
ibm

Summary

IBM Tivoli Business Service Manager (TBSM) 4.1.1 stores passwords in cleartext (1) after external authentication, which triggers writing the password to SM_server.log; and (2) after a reconfig action; which allows local users to obtain sensitive information.

Vulnerable Configurations

Part Description Count
Application
Ibm
1