ASP.NET Misconfiguration: Password in Configuration File

From OWASP
Jump to: navigation, search


This page was marked to be reviewed for deletion.


#REDIRECT ASP.NET Misconfigurations

Last revision (mm/dd/yy): 02/10/2009


Description

The clear-text passwords are in the configuration files. Clear-text passwords in the configuration files are subject to exposure in a variety of ways, including people getting access to the file, the file being served directly to a user due to a server error, a file download flaw, access to a backup copy, or some other exposure.

Risk Factors

TBD


Examples

TBD

Related Attacks


Related Vulnerabilities

Related Controls


Related Technical Impacts

TBD


References

TBD