H3-2022-0062
Microsoft FrontPage service.pwd File Exposure
Category | SECURITY_MISCONFIGURATION |
Base Score | 5.0 |
Description
Systems with Microsoft FrontPage Extensions installed may be misconfigured, exposing information for reading and possibly modification.
Impact
An unauthenticated attacker can obtained hashed passwords from this file to be used in offline cracking attacks. If successful, they can use these credentials to further compromise the host.