Cleartext Password Storage Vulnerability in Oracle JDeveloper

Cleartext Password Storage Vulnerability in Oracle JDeveloper

CVE-2005-2292 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords in (1) IDEConnections.xml, (2) XSQLConfig.xml and (3) settings.xml, which allows local users to obtain sensitive information.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.