CVE-2004-2414 Information

Description

Novell NetWare 6.5 SP 1.1 when installing or upgrading using the Overlay CDs and performing a custom installation with OpenSSH includes sensitive password information in the (1) NIOUTPUT.TXT and (2) NI.LOG log files which might allow local users to obtain the passwords.

Reference

http://secunia.com/advisories/11188 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2968534.htm http://www.securityfocus.com/bid/9934 https://exchange.xforce.ibmcloud.com/vulnerabilities/15600