Misconfigured FrontPage Information Disclosure Scanner

Details
Stay Up To Date
Asset Type

DOMAIN,IP,URL

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

5

Misconfigured FrontPage Information Disclosure Scanner Detail

Misconfigured FrontPage can cause many private data to be leaked by attackers.

If your SharePoint application is anonymously accessible then it's recommended to consider implementing authorization rule to restrict access to web services , or resources under _vti_bin, _vti_pvt , /_vti_bin/spsdisco.aspx ... to at least prevent attacker from accessing these resources to gain information like SharePoint version or FrontPage configuration information.

Some Advice for Common Problems

If you have a FrontPage application that doesn't have any authentication mechanism, set an authentication mechanism immediately.

Community Discussions

Need a Full Assesment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service