CVE-2007-3581

Published: Jul 5, 2007Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The Jedox Palo 1.5 client transmits the password in cleartext, which might allow remote attackers to obtain the password by sniffing the network, as demonstrated by starting Excel with the Palo plugin, opening a cube, and performing an Insert View.

Affected (1)

Products: Jedox: Palo

Jedox

1 product

Palo

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Jedox Palo	Version 1.5

References (4)

http://85.10.222.122/mantis/public_show_bug.php?bug_id=452

Source: cve@mitre.org

http://osvdb.org/45754

Source: cve@mitre.org

http://85.10.222.122/mantis/public_show_bug.php?bug_id=452

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/45754

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.