CVE-2000-0516 Information

Description

When configured to store configuration information in an LDAP directory Shiva Access Manager 5.0.0 stores the root DN (Distinguished Name) name and password in cleartext in a file that is world readable which allows local users to compromise the LDAP server.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-06/0008.html http://www.securityfocus.com/bid/1329 https://exchange.xforce.ibmcloud.com/vulnerabilities/4612