Although this isnt really much more than a human bug, I thought I would share the following information. After reading some of the above posts, a friend decided to load up FrontPage Editor, in an effort to seek out vulnerable sites. He did a search on _vti_inf.html to get a list of some Frontpage servers on the net. It was effective, and he found site after site that had NO password whatsoever limiting his ability to edit the servers pages. Actually, I havent spent much time researching FrontPage, but I can say that most admins are incapable of setting this up properly. Frank http://www.locked.com
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:51:18 PDT