iphone end Taobao,Netease,youku Application Data transmission vulnerability-vulnerability warning-the black bar safety net

2012-07-19T00:00:00
ID MYHACK58:62201234365
Type myhack58
Reporter 佚名
Modified 2012-07-19T00:00:00

Description

Lethal leaderboards【Iphone 9 1 assistant recommended list within the software disclosure of user information]

Full street smart machine. Full street public WIFI and the phone side of the application but worrying

!

On the figure for the iphone end of the lower test platform

The current wireless network there are many security risks,especially in public hotspot area and want to capture this kind of information for a penetration of experience of the people is simply a breeze

It is a at 9 1 on the top four of the applications, not Taobao more than Taobao developed, so it requires an account connected to a network authorization, that is, such a process one needs to verify the account. Authorization to continue to use the software theory is the need for the sensitive information and the data subjected to encryption. While this app?

A look to the“account authorization” in the “login authentication”, etc. interface what is the reaction?

May all like me. - - -

A single look at the interface, and don't think it was safe

Note: It is clear the rest I will not say!

This application in the Taobao shopping, or added to, the collection of commercial time need to login to individual Taobao accounts, so it's not Taobao more than Taobao developed, so it requires an account connected to a network authorization, that is, such a process, it is not for personal account information including ID, password, the KEY key and returns the data to the encryption!

!

!

[1] [2] next