The EnterpriseDB Windows installer writes a password to a temporary file in its installation directory, creates initial databases, and deletes the file During those seconds while the file exists, a local attacker can read the PostgreSQL superuser password from the file ...