Nessus On Android 1.0.1 Credential Disclosure

Nessus On Android 1.0.1 Credential Disclosure: Posted Jul 23, 2012; Nessus version 1.0.1 for Android stores the username and password in cleartext.; tags | exploit; SHA-256 | 431b63271cbeb833e8b77bb7acf8523e8c996d9baec5986af6a90caeab756c6a; Download | Favorite | View

Nessus On Android 1.0.1 Credential Disclosure

Nessus app for android
version 1.0.1

The app allows user to save nessus server info 
IP/username/password.

The app saves this info to
/sdcard/servers.id

This file can be viewed with notepad and password is right there in plain text.  this means any app on the system can see that info and possibly transmit it to an attacker.

Top Authors In Last 30 Days

Red Hat 205 files
Ubuntu 84 files
Gentoo 31 files
Debian 21 files
tmrswrr 10 files
Sina Kheirkhah 7 files
bRpsd 4 files
Rodolfo Tavares 4 files
nu11secur1ty 3 files
Google Security Research 3 files

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,078)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,531)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,350)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,266)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,658)
UNIX (9,425)
UnixWare (187)
Windows (6,666)
Other

Nessus On Android 1.0.1 Credential Disclosure

Nessus On Android 1.0.1 Credential Disclosure

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Nessus On Android 1.0.1 Credential Disclosure

Share This

Nessus On Android 1.0.1 Credential Disclosure

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems