VYPR

Tivoli Micromuse Netcool/NeuSecure

by IBM

CVEs (2)

  • CVE-2006-1210Mar 14, 2006
    risk 0.00cvss epss 0.02

    The web interface for IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 includes the MySQL database username and password in cleartext in body.phtml, which allows remote attackers to gain privileges by reading the source. NOTE: IBM has privately confirmed to CVE that a fix is…

  • CVE-2006-1211Mar 14, 2006
    risk 0.00cvss epss 0.01

    IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 configures a MySQL database to allow connections from any source IP address with the ns database account, which allows remote attackers to bypass the Netcool/NeuSecure application layer and perform unauthorized database actions. …