PK55561: Security vulnerability from unsuccessful login attempts (3.2.1)
Closed as program error.
IBM Rational ClearQuest Web: The error messages produced by uns uccessful login attempts make it possible to perform scripted us ername enumeration through the login pages within the applicatio n.
In ClearQuest web it is possible to perform scripted username enumeration exposing a security vulnerability from unsuccessful login attempts.
Fixed in ClearQuest web 220.127.116.11-ifix01 and 18.104.22.168-ifix01.
Reported component name
Reported component ID
Last modified date
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fixed component name
Fixed component ID
Applicable component levels