SOAP/XML Plaintext Credentials Disclosure

Medium Nessus Network Monitor Plugin ID 4757

Synopsis

The remote host is running an inherently insecure protocol or application.

Description

The remote SOAP client was just observed sending what appears to be login information.

Solution

Ensure that confidential data is only passed over encrypted protocols.

Plugin Details

Severity: Medium

ID: 4757

Family: Web Clients

Published: 2008/11/14

Modified: 2016/01/15

Dependencies: 1735, 8314

Risk Information

Risk Factor: Medium