Cleartext Storage of Credentials in Samsung Web Viewer for Samsung DVR Devices

Cleartext Storage of Credentials in Samsung Web Viewer for Samsung DVR Devices

CVE-2013-3585 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Samsung Web Viewer for Samsung DVR devices stores credentials in cleartext, which allows context-dependent attackers to obtain sensitive information via vectors involving (1) direct access to a file or (2) the user-setup web page.

Learn more about our Web App Pen Testing.