NT Versions Affected:

4.0

Problem:

In FrontPage 1.1, the IUSR_* account is granted Full Control to the _vti_bin directory and Shtml.exe. If an intruder has the IUSR_<hostname> password (typically a simple password) and logged into the machine they would have write permission in an executable directory.

Verification:

http://www.microsoft.com/kb/articles/q162/1/44.htm