CVE-2006-2539 Information

Description

Sybase EAServer 5.0 for HP-UX Itanium 5.2 for IBM AIX HP-UX PA-RISC Linux x86 and Sun Solaris SPARC and 5.3 for Sun Solaris SPARC does not properly protect passwords when they are being entered via the GUI which allows local users to obtain the cleartext passwords via the getSelectedText function in javax.swing.JPasswordField component.

Reference

http://secunia.com/advisories/20145 http://www.securityfocus.com/bid/18036 http://www.sybase.com/detail?id=1040665 http://www.vupen.com/english/advisories/2006/1869 https://exchange.xforce.ibmcloud.com/vulnerabilities/26567