YerooTech iDS6 DSSPro Digital Signage System Password Disclosure Vulnerability

A vulnerability in YerooTech iDS6 DSSPro Digital Signage System version 6.2 allows remote attackers to intercept authentication credentials due to cleartext transmission of sensitive information in cookies. This issue arises when the autoSave feature is enabled, creating a risk of password disclosure during man-in-the-middle attacks on HTTP communications.

Impact

Exploitation of this vulnerability could lead to unauthorized interception of user passwords and authentication credentials, allowing attackers to gain unauthorized access to user accounts or administrative functions.

Reproduction

The vulnerability can be reproduced by enabling the autoSave feature, which causes the application to store passwords in cookies. These cookies are then transmitted unencrypted over HTTP, where they can be intercepted by an attacker. For the regular dashboard, the intercepted cookies include 'cookie.username' and 'cookie.password'. For the admin dashboard, 'cookie.admin.username' and 'cookie.admin.password' are transmitted.