Short Name |
HTTP:FRONTPAGE:AUTH-PWD-PROBE |
---|---|
Severity |
Warning |
Recommended |
No |
Category |
HTTP |
Keywords |
Frontpage Authors.pwd Probe |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects requests for Microsoft FrontPage password files that can be used to gain sensitive user information.
It has been reported that Microsoft Exchange Server 2003 may be prone to a weakness when Microsoft Windows SharePoint Services 2.0 is installed on a machine running both Exchange Server 2003 and Microsoft Windows Server 2003. This installation may cause the Kerberos authentication employed by the server to be disabled in IIS (Internet Information Services) resorting to NTLM.