I have discovered that the shipping software distributed by EAGLE USA sends Username/Password information in clear text over the internet. This can be replicated by installing the software and using a sniffer to view the HTML string that gets passed to the server. Very clearly the Username password combo appears in clear text in the string. This information could be very useful in a corporate espionage situation in which gaining information about product shipments by a competitor (how many of what product where shipped at what cost to what customer when) could be of use. David Melchionna Senior Network Security Analyst Bayer Pharmaceuticals.
