ES File Explorer File Manager app is vulnerable to Man-In-The-Middle (MitM) attack. This Vulnerable Android application has over 100 Million installs on Google Play store. ESET Mobile Security. ES File Explorer Security Risk.
Scenario:
Attacker has to be connected to the same network as the victim (Starbucks, coffee shop, public wifi...) to intercept victim's traffic.
App uses instead of secured HTTPS protocol HTTP that could be controlled by adversary if on same local network.
This vulnerability was found after @fs0c131y published Open Port Vulnerability in the same app. You can watch it here:
For more Android Security info Subscribe & Follow me on Twitter:
0 Comments