CVE-2012-3312 Information

Description

The datasource definition editor in IBM InfoSphere Guardium 8.2 and earlier when the save-password setting is enabled transmits cleartext database credentials which allows remote attackers to obtain sensitive information by sniffing the network.

Reference

http://en.securitylab.ru/lab/ http://en.securitylab.ru/lab/PT-2012-15 http://www.ibm.com/support/docview.wss?uid=swg21609224 https://exchange.xforce.ibmcloud.com/vulnerabilities/77785