Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

SOAP/XML Plaintext Credentials Disclosure

Medium

Synopsis

The remote host is running an inherently insecure protocol or application.

Description

The remote SOAP server was just observed receiving what appears to be login information over unencrypted HTTP.

Solution

Ensure that confidential data is only passed over an encryped protocol.