This script is Copyright (C) 1999-2014 Tenable Network Security, Inc.
The remote web server has an information disclosure vulnerability.
The remote web server appears to be running with Microsoft FrontPage
extensions. The file 'authors.pwd', which contains the encrypted
passwords of FrontPage authors, can by accessed by anyone. A remote
attacker could decrypt these passwords, or possibly overwrite this
See also :
Change the permissions of the '/vti_vt' directory to prevent access by
unauthenticated web users.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.2
Public Exploit Available : false
Family: Web Servers
Nessus Plugin ID: 10078 (frontpage_authors.nasl)
Bugtraq ID: 1205