CVE-2009-2312 Information

Description

SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in config.txt and uses insecure permissions for this file which allows local users to gain privileges.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0314.html http://secunia.com/advisories/34390 https://exchange.xforce.ibmcloud.com/vulnerabilities/49338