قالب وردپرس درنا توس
Home / Tips and Tricks / A vulnerability in ES File Explorer exposes all of your files to anyone on the same network

A vulnerability in ES File Explorer exposes all of your files to anyone on the same network



For a long time ES File Explorer was the de facto file manager for Android. Over time, however, it proved less trustworthy. A recent vulnerability reminds us why there are better decisions now.

As reported by Android Police, there is a new security hole in ES that exposes your files to everyone on the same network ̵

1; you only need to open the app once . . This error was found through research on Elliot Alderson published on Twitter .

Obviously, ES port 59777 will open on your phone after launch so that everyone on the same network can access the file structure and beyond that. An attacker could use this open port to inject a JSON payload, then access and download all of your information.

The advantage is that the ES team knows about the problem and says that it has been fixed and an update is received:

We have fixed the problem with the http vulnerability and released it. Wait for the Google market to pass the review.

However, given ES's long history, this is just another opportunity to remind everyone that there are better options. If you insist on using ES, I would at least suggest getting rid of it until the update to fix this bug is available in the Play Store.

about Android Police


Source link