CVE-2009-2899

SpringSource Hyperic HQ < 4.2 - Exposure of Sensitive Information via Sybase Database Plugin

Title source: llm
STIX 2.1

Description

The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3 allows local users to obtain the database password by listing the process and its arguments.

References (3)

Core 3
Core References
Various Sources x_refsource_misc
https://jira.hyperic.com/browse/HHQ-1031
Various Sources x_refsource_misc
http://communities.vmware.com/thread/348773
Vendor Advisory x_refsource_confirm
http://support.springsource.com/security/CVE-2009-2899

Scores

EPSS 0.0004
EPSS Percentile 12.5%

Details

CWE
CWE-200
Status published
Products (1)
vmware/hyperic_hq < 4.2
Published Dec 05, 2012
Tracked Since Feb 18, 2026