CVE-2009-2899 Information

Description

The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3 allows local users to obtain the database password by listing the process and its arguments.

Reference

http://communities.vmware.com/thread/348773 http://support.springsource.com/security/CVE-2009-2899 https://jira.hyperic.com/browse/HHQ-1031