[3613] in bugtraq
Re: cleartext passwords in Remedy processes' cores
daemon@ATHENA.MIT.EDU (Joel Murphy)
Sat Nov 16 03:33:45 1996
Date: Fri, 15 Nov 1996 21:09:40 -0500
Reply-To: Joel Murphy <jmurphy@cnu.acsu.buffalo.edu>
From: Joel Murphy <jmurphy@cnu.acsu.buffalo.edu>
X-To: grina@grina.com
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <9611131904.AA00847@grina.com> from "Peter A. Grina" at Nov 13,
96 02:04:20 pm
> The security hole in Remedy's product is that a core dump of either the user
> processes (i.e. aruser, notifier) shows the user's password in clear text.
Anyone who is an administrator in Remedy can fetch any password in
plain text from the server with a trivial program using the ARS api.
It also has an annoying feature were the client tool by default saves
your password to file in form that it knows how to decryt. Don't use
passwords from other systems in Remedy...
Joel Murphy
