4.8
CVSSv2

CVE-2019-6447

Published: 16/01/2019 Updated: 14/02/2019
CVSS v2 Base Score: 4.8 | Impact Score: 4.9 | Exploitability Score: 6.5
CVSS v3 Base Score: 8.1 | Impact Score: 5.2 | Exploitability Score: 2.8
VMScore: 522
Vector: AV:A/AC:L/Au:N/C:P/I:P/A:N

Vulnerability Summary

The ES File Explorer File Manager application through 4.1.9.7.4 for Android allows remote malicious users to read arbitrary files or execute applications via TCP port 59777 requests on the local Wi-Fi network. This TCP port remains open after the ES application has been launched once, and responds to unauthenticated application/json data over HTTP.

Vulnerability Trend

Affected Products

Vendor Product Versions
EstrongsEs File Explorer File Manager4.1.9.7.4

Metasploit Modules

ES File Explorer Open Port

This module connects to ES File Explorer's HTTP server to run certain commands. The HTTP server is started on app launch, and is available as long as the app is open. Version 4.1.9.7.4 and below are reported vulnerable This module has been tested against 4.1.9.5.1.

msf > use auxiliary/scanner/http/es_file_explorer_open_port
      msf auxiliary(es_file_explorer_open_port) > show actions
            ...actions...
      msf auxiliary(es_file_explorer_open_port) > set ACTION <action-name>
      msf auxiliary(es_file_explorer_open_port) > show options
            ...show and set options...
      msf auxiliary(es_file_explorer_open_port) > run

Github Repositories

ES File Explorer Open Port Vulnerability - CVE-2019-6447 As per their Google Play description: ES File Explorer (File Manager) is a full-featured file (Images, Music, Movies, Documents, app) manager for both local and networked use! With over 500 million users worldwide, ES File Explorer (File Manager) helps manage your android phone and files efficiently and effectively and s

CVE-Collection

ES File Explorer Open Port Vulnerability - CVE-2019-6447 As per their Google Play description: ES File Explorer (File Manager) is a full-featured file (Images, Music, Movies, Documents, app) manager for both local and networked use! With over 500 million users worldwide, ES File Explorer (File Manager) helps manage your android phone and files efficiently and effectively and s

ES File Explorer Open Port Vulnerability - CVE-2019-6447 As per their Google Play description: ES File Explorer (File Manager) is a full-featured file (Images, Music, Movies, Documents, app) manager for both local and networked use! With over 500 million users worldwide, ES File Explorer (File Manager) helps manage your android phone and files efficiently and effectively and s

Awesome Stars A curated list of my GitHub stars! Generated by starred Contents ASP Assembly Awk Batchfile Brainfuck C C# C++ CSS Clojure CoffeeScript Crystal D DIGITAL Command Language Dart Dhall Dockerfile Elixir Elm Emacs Lisp Erlang GDScript Go HCL HTML Handlebars Haskell Inno Setup Java JavaScript Julia Jupyter Notebook Kotlin LLVM Lua Makefile Mercury NSIS Nim Nix OCa

Awesome Hacking Awesome hacking is a curated list of hacking tools for hackers, pentesters and security researchers Its goal is to collect, classify and make awesome tools easy to find by humans, creating a toolset you can checkout and update with one command This is not only a curated list, it is also a complete and updated toolset you can download with one-command! You can

Recent Articles

ES File Explorer Flaws Put 100 Million Users' Data at Risk, Fix Promised
BleepingComputer • Sergiu Gatlan • 17 Jan 2019

A hidden web server always running in the background was found by security researcher Robert Baptiste in ES File Explorer, an Android file manager with over 100,000,000 installs displayed on the Google Play store page and over 500 million users worldwide according to its developer.
As discovered by Baptiste, right after launching the app it will start a local HTTP server on port 59777 which will stay open until all the background services of ES File Explorer are killed:
Furtherm...