The Jedox Palo 1.5 client transmits the password in cleartext, which might allow remote attackers to obtain the password by sniffing the network, as demonstrated by starting Excel with the Palo plugin, opening a cube, and performing an Insert View.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2007-07-05T20:00:00
Updated: 2024-08-07T14:21:36.492Z
Reserved: 2007-07-05T00:00:00
Link: CVE-2007-3581

No data.

Status : Modified
Published: 2007-07-05T20:30:00.000
Modified: 2024-11-21T00:33:35.073
Link: CVE-2007-3581

No data.