SymmetricalDataSecurity: IBM Security Bulletin: Passwords May Be Logged When Some High Logging Level Flag is Used (CVE-2014-0890)

Monday, March 3, 2014

IBM Security Bulletin: Passwords May Be Logged When Some High Logging Level Flag is Used (CVE-2014-0890)

If a user sets a particular log flag (see below) to high level and uses Audio/Video chat, the user's password may be logged in the clear or encoded (not encrypted). CVE(s): CVE-2014-0890 Affected product(s) and affected version(s): ...

via IBM Product Security Incident Response Team http://ibm.co/1ksIMHF

SymmetricalDataSecurity

Monday, March 3, 2014

IBM Security Bulletin: Passwords May Be Logged When Some High Logging Level Flag is Used (CVE-2014-0890)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews