The Visionsoft Audit on Demand Service (VSAOD) in Visionsoft Audit 12.4.0.0 uses weak cryptography (XOR) when (1) transmitting passwords, which allows remote attackers to obtain sensitive information by sniffing the network; and (2) storing passwords in the configuration file, which allows local users to obtain sensitive information by reading this file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-08-03T20:00:00
Updated: 2024-08-07T14:46:39.290Z
Reserved: 2007-08-03T00:00:00
Link: CVE-2007-4150
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2007-08-03T20:17:00.000
Modified: 2024-02-09T03:19:27.583
Link: CVE-2007-4150
Redhat
No data.