Ogopogo Autothenticate 1.1.5 - Weak Password Encryption

EDB-ID:

19438

CVE:


EDB Verified:

Author:

Prozaq of mSec

Type:

local

Exploit:   /  

Platform:

OSX

Date:

1999-07-29

Vulnerable App: 
source: https://www.securityfocus.com/bid/552/info

Autothenticate is an extension for MacOS that remembers usernames and passwords from visited websites, and atomatically enters them when the site is visited again. It can be configured to store the username and password, the username only, or nothing. It stores this information in encrypted form in a preference file called "AutothenticatePreferences" located in the Preferences folder in the System Folder. The encryption mechanism used is weak and can be broken. 

This program, written by mSec, decrypts the Autothenticate information. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19438.sit
Tags:
Advisory/Source: Link
Databases Links Sites Solutions
Exploits Search Exploit-DB OffSec Courses and Certifications
Google Hacking Submit Entry Kali Linux Learn Subscriptions
Papers SearchSploit Manual VulnHub OffSec Cyber Range
Shellcodes Exploit Statistics Proving Grounds
Penetration Testing Services
Exploits Google Hacking Papers Shellcodes
Search Exploit-DB Submit Entry SearchSploit Manual Exploit Statistics
OffSec Kali Linux VulnHub
Courses and Certifications Learn Subscriptions OffSec Cyber Range Proving Grounds Penetration Testing Services