Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 1999-2018 Tenable Network Security, Inc.FRONTPAGE_AUTHORS.NASL
HistoryAug 22, 1999 - 12:00 a.m.

Microsoft FrontPage Extensions authors.pwd Information Disclosure

1999-08-2200:00:00
This script is Copyright (C) 1999-2018 Tenable Network Security, Inc.
www.tenable.com
37
JSON

The remote web server appears to be running with Microsoft FrontPage extensions. The file β€˜authors.pwd’, which contains the encrypted passwords of FrontPage authors, can by accessed by anyone. A remote attacker could decrypt these passwords, or possibly overwrite this file.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
 script_id(10078);
 script_version("1.35");
 script_cvs_date("Date: 2018/11/15 20:50:25");
 script_bugtraq_id(1205);

 script_name(english:"Microsoft FrontPage Extensions authors.pwd Information Disclosure");
 script_summary(english:"Checks for the presence of Microsoft FrontPage extensions");

 script_set_attribute(attribute:"synopsis", value:"The remote web server has an information disclosure vulnerability.");
 script_set_attribute(attribute:"description", value:
"The remote web server appears to be running with Microsoft FrontPage
extensions. The file 'authors.pwd', which contains the encrypted
passwords of FrontPage authors, can by accessed by anyone. A remote
attacker could decrypt these passwords, or possibly overwrite this
file.");
 script_set_attribute(attribute:"see_also", value:"https://seclists.org/bugtraq/1998/Apr/169");
 script_set_attribute(attribute:"solution", value:
"Change the permissions of the '/vti_vt' directory to prevent access by
unauthenticated web users.");
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
 script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"false");

 script_set_attribute(attribute:"vuln_publication_date", value:"1999/07/23");
 script_set_attribute(attribute:"plugin_publication_date", value:"1999/08/22");

 script_set_attribute(attribute:"potential_vulnerability", value:"true");
 script_set_attribute(attribute:"plugin_type", value:"remote");
 script_end_attributes();

 script_category(ACT_GATHER_INFO);
 script_family(english:"Web Servers");

 script_copyright(english:"This script is Copyright (C) 1999-2018 Tenable Network Security, Inc.");

 script_dependencie("http_version.nasl");
 script_require_keys("Settings/ParanoidReport");
 script_require_ports("Services/www", 80);

 exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");

if (report_paranoia < 2) audit(AUDIT_PARANOID);

port = get_http_port(default:80);

sig = get_http_banner(port:port);
if ( sig && "IIS" >!< sig ) exit(0);
res = is_cgi_installed3(item:"/_vti_pvt/authors.pwd", port:port);
if ( res ) security_warning(port);
JSON