Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Microsoft Windows: MS Security Guide: WDigest Authentication

Information

Severity

Severity

Informational

Family

Family

Policy

CVSSv2 Base

CVSSv2 Base

0.0

CVSSv2 Vector

CVSSv2 Vector

AV:L/AC:H/Au:S/C:N/I:N/A:N

Created

Created

5 years ago

Modified

Modified

5 years ago

Summary

This test checks the setting for policy 'WDigest Authenticationr' on Windows hosts (at least Windows 7). When WDigest authentication is enabled, Lsass.exe retains a copy of the users plaintext password in memory, where it can be at risk of theft. Microsoft recommends disabling WDigest authentication unless it is needed. If this setting is not configured, WDigest authentication is disabled in Windows 8.1 and in Windows Server 2012 R2 it is enabled by default in earlier versions of Windows and Windows Server.