CVSS: 2.7EPSS: 0%CPEs: 1EXPL: 0CVE-2006-6607
https://notcve.org/view.php?id=CVE-2006-6607
The Java Key Store (JKS) for WebSphere Application Server (WAS) for IBM Tivoli Identity Manager (ITIM) 4.6 places the JKS password in a -Djavax.net.ssl.trustStorePassword command line argument, which allows local users to obtain the password by listing the process or using other methods. El Java Key Store (JKS) para WebSphere Application Server (WAS) para IBM Tivoli Identity Manager (ITIM) 4.6 pone la contraseña JKS en una linea de comando -Djavax.net.ssl.trustStorePassword, lo cual permite a un usuario local obtener contraseña a traves de listar el proceso o usando otros métodos. • http://secunia.com/advisories/23359 http://securitytracker.com/id?1017380 http://www-1.ibm.com/support/docview.wss?uid=swg21251069 http://www.securityfocus.com/bid/21570 http://www.vupen.com/english/advisories/2006/4989 https://exchange.xforce.ibmcloud.com/vulnerabilities/30865 •