Application Access Server (A-A-S) 2.0.48 stores (1) passwords and (2) the port keyword in cleartext in aas.ini, which allows local users to obtain sensitive information by reading this file.Referenceshttp://www.syhunt.com/advisories/?id=aas-multiplehttp://www.securityfocus.com/archive/1/503434/100/0/threadedhttp://www.securityfocus.com/bid/34911https://exchange.xforce.ibmcloud.com/vulnerabilities/50590http://securitytracker.com/id?1022204
