CVE-2013-6986 Information

Description

The ZippyYum Subway CA Kiosk app 3.4 for iOS uses cleartext storage in SQLite cache databases which allows attackers to obtain sensitive information by reading data elements as demonstrated by password elements.

Reference

http://archives.neohapsis.com/archives/bugtraq/2013-12/0040.html http://osvdb.org/100745 http://packetstormsecurity.com/files/124330/ZippyYum-3.4-Insecure-Data-Storage.html http://seclists.org/fulldisclosure/2013/Dec/39