Cleartext Password Storage Vulnerability in Oracle JDeveloper
CVE-2005-2292 · LOW Severity
AV:L/AC:L/AU:N/C:P/I:N/A:N
Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, (2) XSQLConfig.xml and (3) settings.xml, which allows local users to obtain sensitive information.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.