CVE-2006-6145 Information

Description

CRYPTOCard CRYPTO-Server before 6.4.56 stores LDAP credentials in plaintext in UninstallerData\installvariables.properties which has insecure permissions and allows local users to obtain the credentials. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://secunia.com/advisories/22138 http://www.securityfocus.com/bid/21305 http://www.vupen.com/english/advisories/2006/4710 https://exchange.xforce.ibmcloud.com/vulnerabilities/30557