First published: Fri Dec 18 2009(Updated: )
CQWeb (aka the web interface) in IBM Rational ClearQuest before 7.1.1 does not properly handle use of legacy URLs for automatic login, which might allow attackers to discover the passwords for user accounts via unspecified vectors.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Rational ClearQuest | =7.0.1.3 | |
IBM Rational ClearQuest | =6.10 | |
IBM Rational ClearCase | <=7.1 | |
IBM Rational ClearQuest | =7.0.1.1 | |
IBM Rational ClearQuest | =7.0.0.1 | |
IBM Rational ClearCase | =7.0.0.1 | |
IBM Rational ClearCase | =7.0.1.1 | |
IBM Rational ClearCase | =7.0.0.4 | |
IBM Rational ClearQuest | =7.0.1.0 | |
IBM Rational ClearQuest | =6.14 | |
IBM Rational ClearQuest | =5.00 | |
IBM Rational ClearCase | =7.0.1.3 | |
IBM Rational ClearQuest | =5.20 | |
IBM Rational ClearQuest | =6.13 | |
IBM Rational ClearQuest | =7.0 | |
IBM Rational ClearQuest | =2008 | |
IBM Rational ClearQuest | =6.12 | |
IBM Rational ClearQuest | =6.15 | |
IBM Rational ClearCase | =7.0.0.2 | |
IBM Rational ClearQuest | =7.0.1 | |
IBM Rational ClearQuest | =6.16 | |
IBM Rational ClearQuest | =2007 | |
IBM Rational ClearQuest | =6.00 | |
IBM Rational ClearQuest | =7.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.