Insecure Password Handling in Domain Technologie Control (DTC) before 0.34.1

Insecure Password Handling in Domain Technologie Control (DTC) before 0.34.1

CVE-2011-3198 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Domain Technologie Control (DTC) before 0.34.1 includes a password in the -b command line argument to htpasswd, which might allow local users to read the password by listing the process and its arguments.

Learn more about our User Device Pen Test.