CVE-2009-4357

Metadata

CVE-2009-4357
5.0
securitytracker.com, www-01.ibm.com, securityfocus.com, vupen.com
2009-12-18
2017-06-06 20:21

Description

CQWeb (aka the web interface) in IBM Rational ClearQuest before 7.1.1 does not properly handle use of legacy URLs for automatic login, which might allow attackers to discover the passwords for user accounts via unspecified vectors.

Related Vulnerabilities