Credentials Management Errors
CVE-2004-1366
Summary
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
- LOW
- LOCAL
- NONE
- PARTIAL
- PARTIAL
- PARTIAL
CWE-255 - Credentials Management Errors
Weaknesses in this category are related to the management of credentials.
References
Advisory Timeline
- Published