PCI DSS Compliance : Insecure Communication Has Been Detected

Medium Nessus Plugin ID 56208

Synopsis

An insecure port, protocol, or service has been detected.

Description

Applications that fail to adequately encrypt network traffic using strong cryptography are at increased risk of being compromised and exposing cardholder data. An attacker who is able to exploit weak cryptographic processes can gain control of an application or even gain cleartext access to encrypted data.

Solution

Properly encrypt all authenticated and sensitive communications.

Plugin Details

Severity: Medium

ID: 56208

File Name: pci_cleartext_credentials.nasl

Version: Revision: 1.6

Type: remote

Published: 2011/09/15

Modified: 2016/01/05

Dependencies: 10666, 11585, 15856, 87733, 11591, 34850, 10245, 19762, 20162, 26194, 87732, 10051, 42263, 10205, 15855, 59659, 34324, 15854, 20870, 87736, 10891, 11673, 19948, 10203, 57272, 57335, 87734, 87735, 10144, 54582

Risk Information

Risk Factor: Medium