oval:org.mitre.oval:def:255

Definition Id: oval:org.mitre.oval:def:255
 
Oval ID: oval:org.mitre.oval:def:255
Title: Clear Text Password Logging Vulnerability
Description: Solaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using pam_krb5 as an "auth" module with the debug feature enabled, records passwords in plaintext, which could allow local users to gain other user's passwords by reading log files.
Family: unix Class: vulnerability
Reference(s): CVE-2004-0653
Version: 4
Platform(s): Sun Solaris 9
Product(s):
Definition Synopsis: