[原文]** DISPUTED ** Nessus 2.0.10a stores account passwords in plaintext in .nessusrc files, which allows local users to obtain passwords. NOTE: the original researcher reports that the vendor has disputed this issue.
Nessus contains a flaw that may lead to an unauthorized password exposure. It is possible for a local user to gain access to plaintext passwords by viewing the .nessusrc file, which may lead to a loss of confidentiality and integrity.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.