Intrusion Prevention

Administrators.PWD

Description

It indicates an attempt to access a password file on Microsoft Personal Web Server (PWS) or FrontPage PWS.

Due to design errors in file permissions, a remote attacker can gain access to the various password files on a machine running PWS, which contains usernames and encrypted passwords. This problem is specific to Microsoft FrontPage extension for Unix.

Affected Products

Any unprotected Microsoft Windows 95 or 98 running Frontpage 1.1 or Frontpage 98 is vulnerable to the attack.

Impact

Information leak may assist future attacks

Recommended Actions

Disable the Personal Web Server if possible.

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Detail
2018-11-20	13.494	Default_action:pass:drop
2018-10-10	13.469	Sig Added

ID	12979
Created	Sep 11, 2006
Updated	Nov 15, 2021
Risk
Default Action	drop
Active
Affected OS	Windows
Affected App	MS_Office

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

Administrators.PWD

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Version Updates

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

Administrators.PWD

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Version Updates

Threat Intelligence
Center