CVE-2006-5600 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-5600

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Axalto Protiva 1.1, possibly only non-commercial versions, stores passwords in plaintext in files with insecure permissions, which allows local users to gain privileges by reading the passwords from (1) KeyToolkeytool.config or (2) webappsprotivaWEB-INFclassesauthserver.config.

Affected Software

Name	Vendor	Start Version	End Version
Protiva	Axalto	1.1 (including)	1.1 (including)

References

http://securityreason.com/securityalert/1793
http://www.securityfocus.com/archive/1/449891/100/0/threaded
http://www.securityfocus.com/bid/20755
https://exchange.xforce.ibmcloud.com/vulnerabilities/29839
http://securityreason.com/securityalert/1793
http://www.securityfocus.com/archive/1/449891/100/0/threaded
http://www.securityfocus.com/bid/20755
https://exchange.xforce.ibmcloud.com/vulnerabilities/29839