Wowza Streaming Engine 4.5.0 Cleartext Sensitive Information Storage

Posted by deepcore on July 21, 2016 – 4:44 am

Wowza Streaming Engine version 4.5.0 build 18676 stores sensitive information in cleartext within a resource that might be accessible to another control sphere. When the file is modified it is automatically applied into the application with newly created user account. Wowza stores sensitive information such as username and password in cleartext in admin.password file, which is readable by local users.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Oracle Patches 27 Vulnerabilities WordPress Icegram 1.9.18 Cross Site Request Forgery »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Wowza Streaming Engine 4.5.0 Cleartext Sensitive Information Storage

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL