CVE-2005-2293 Information

Description

Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a temporary file which is not deleted after it is used which allows local users to obtain sensitive information.

Reference

http://marc.info/?l=bugtraq&m=112129452232307&w=2 http://secunia.com/advisories/15991/ http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html http://www.red-database-security.com/advisory/oracle_formsbuilder_temp_file_issue.html https://exchange.xforce.ibmcloud.com/vulnerabilities/21343