CVE Vulnerabilities

CVE-2010-3897

Published: Nov 12, 2010 | Modified: Oct 10, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

ESSearchApplication/palette.do in IBM OmniFind Enterprise Edition 8.x and 9.x includes the administrator password in the HTML source code, which might allow remote attackers to obtain sensitive information by leveraging read access to this file.

Affected Software

Name Vendor Start Version End Version
Omnifind Ibm 8.0 (including) 8.0 (including)
Omnifind Ibm 8.4 (including) 8.4 (including)
Omnifind Ibm 8.5 (including) 8.5 (including)
Omnifind Ibm 9.0 (including) 9.0 (including)
Omnifind Ibm 9.1 (including) 9.1 (including)

References