CVE-2006-2430 | Vulnerability Database | Aqua Security

IBM WebSphere Application Server 5.0.2 and earlier, 5.1.1 and earlier, and 6.0.2 up to 6.0.2.7 records user credentials in plaintext in addNode.log, which allows attackers to gain privileges.

Affected Software

Name	Vendor	Start Version	End Version
Websphere_application_server	Ibm	5.0.0 (including)	5.0.0 (including)
Websphere_application_server	Ibm	5.0.1 (including)	5.0.1 (including)
Websphere_application_server	Ibm	5.0.2 (including)	5.0.2 (including)
Websphere_application_server	Ibm	5.1.0 (including)	5.1.0 (including)
Websphere_application_server	Ibm	5.1.1 (including)	5.1.1 (including)
Websphere_application_server	Ibm	6.0.2 (including)	6.0.2 (including)
Websphere_application_server	Ibm	6.0.2.1 (including)	6.0.2.1 (including)
Websphere_application_server	Ibm	6.0.2.2 (including)	6.0.2.2 (including)
Websphere_application_server	Ibm	6.0.2.3 (including)	6.0.2.3 (including)
Websphere_application_server	Ibm	6.0.2.4 (including)	6.0.2.4 (including)
Websphere_application_server	Ibm	6.0.2.5 (including)	6.0.2.5 (including)
Websphere_application_server	Ibm	6.0.2.6 (including)	6.0.2.6 (including)
Websphere_application_server	Ibm	6.0.2.7 (including)	6.0.2.7 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2006-05/0175.html
http://secunia.com/advisories/20032
http://securityreason.com/securityalert/910
http://www-1.ibm.com/support/docview.wss?rs=0\u0026dc=DB550\u0026q1=PK16492\u0026uid=swg1PK22416\u0026loc=en_US\u0026cs=utf-8\u0026lang=
http://www-1.ibm.com/support/docview.wss?rs=180\u0026uid=swg24011773
http://www-1.ibm.com/support/docview.wss?rs=180\u0026uid=swg24012009
http://www-1.ibm.com/support/docview.wss?rs=180\u0026uid=swg24012064
http://www-1.ibm.com/support/search.wss?rs=0\u0026q=PK16492\u0026apar=only
http://www.osvdb.org/25372
http://www.vupen.com/english/advisories/2006/1736
http://archives.neohapsis.com/archives/bugtraq/2006-05/0175.html
http://secunia.com/advisories/20032
http://securityreason.com/securityalert/910
http://www-1.ibm.com/support/docview.wss?rs=0\u0026dc=DB550\u0026q1=PK16492\u0026uid=swg1PK22416\u0026loc=en_US\u0026cs=utf-8\u0026lang=
http://www-1.ibm.com/support/docview.wss?rs=180\u0026uid=swg24011773
http://www-1.ibm.com/support/docview.wss?rs=180\u0026uid=swg24012009
http://www-1.ibm.com/support/docview.wss?rs=180\u0026uid=swg24012064
http://www-1.ibm.com/support/search.wss?rs=0\u0026q=PK16492\u0026apar=only
http://www.osvdb.org/25372
http://www.vupen.com/english/advisories/2006/1736

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-2430
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html