Administrators.PWD
Description
It indicates an attempt to access a password file on Microsoft Personal Web Server (PWS) or FrontPage PWS.
Due to design errors in file permissions, a remote attacker can gain access to the various password files on a machine running PWS, which contains usernames and encrypted passwords. This problem is specific to Microsoft FrontPage extension for Unix.
Affected Products
Any unprotected Microsoft Windows 95 or 98 running Frontpage 1.1 or Frontpage 98 is vulnerable to the attack.
Impact
Information leak may assist future attacks
Recommended Actions
Disable the Personal Web Server if possible.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |