Configuration 1
     AND
          OR
               *cpe:2.3:a:ibm:tivoli_identity_manager_adapter:5.1.20:*:*:*:*:*:*:* (and previous)
               *cpe:2.3:a:ibm:security_identity_manager_adapter:6.0.14:*:*:*:*:*:*:* (and previous)
          OR
               *cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:x64:*

Configuration 1
     OR
          *cpe:2.3:a:ibm:tivoli_identity_manager_active_directory_adapter:5.1.20:*:*:*:*:windows:*:* (and previous)
          *cpe:2.3:a:ibm:security_identity_manager_active_directory_adapter:6.0.14:*:*:*:*:windows:*:* (and previous)

El adaptador (1) IBM Tivoli Identity Manager Active Directory en versiones anteriores a 5.1.24 y el adaptador (2) IBM Security Identity Manager Active Directory en versiones anteriores a 6.0.14 para IBM Security Identity Manager en Windows, cuando ciertos niveles de registro y rastreo son configurados, almacena la contraseña de administrador en un archivo de registro, lo que permite a usuarios locales obtener información sensible leyendo un archivo.

Los adaptadores (1) IBM Tivoli Identity Manager Active Directory anterior a 5.1.4 y (2) IBM Security Identity Manager Active Directory anterior a 6.0.14 para IBM Security Identity Manager en Windows, cuando ciertos niveles de registro y traza están configurados, almacenan la contraseña del administrador en texto plano en un fichero de registros, lo que permite a usuarios locales obtener información sensible mediante la lectura de un fichero.

Configuration 1
     AND
          OR
               *cpe:2.3:a:ibm:tivoli_identity_manager_adapter:5.1.3:*:*:*:*:*:*:* (and previous)
               *cpe:2.3:a:ibm:security_identity_manager_adapter:6.0.14:*:*:*:*:*:*:* (and previous)
          OR
               *cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:x64:*

Configuration 1
     AND
          OR
               *cpe:2.3:a:ibm:tivoli_identity_manager_adapter:5.1.20:*:*:*:*:*:*:* (and previous)
               *cpe:2.3:a:ibm:security_identity_manager_adapter:6.0.14:*:*:*:*:*:*:* (and previous)
          OR
               *cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:x64:*

The (1) IBM Tivoli Identity Manager Active Directory adapter before 5.1.4 and (2) IBM Security Identity Manager Active Directory adapter before 6.0.14 for IBM Security Identity Manager on Windows, when certain log and trace levels are configured, store the cleartext administrator password in a log file, which allows local users to obtain sensitive information by reading a file.

The (1) IBM Tivoli Identity Manager Active Directory adapter before 5.1.24 and (2) IBM Security Identity Manager Active Directory adapter before 6.0.14 for IBM Security Identity Manager on Windows, when certain log and trace levels are configured, store the cleartext administrator password in a log file, which allows local users to obtain sensitive information by reading a file.

Configuration 1
     AND
          OR
               *cpe:2.3:a:ibm:tivoli_identity_manager_adapter:5.1.3:*:*:*:*:*:*:* (and previous)
               *cpe:2.3:a:ibm:security_identity_manager_adapter:6.0.14:*:*:*:*:*:*:* (and previous)
          OR
               *cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:x64:*

(AV:L/AC:M/Au:N/C:P/I:N/A:N)

CWE-200

http://www-01.ibm.com/support/docview.wss?uid=swg21699902 No Types Assigned

http://www-01.ibm.com/support/docview.wss?uid=swg21699902 Advisory, Patch