Article ID: 217763 - View products that this article applies to.
This article was previously published under Q217763
This article has been archived. It is offered "as is" and will no longer be updated.
When you use either Microsoft Personal Web Server or Microsoft FrontPage Personal Web Server (PWS) on a computer running Microsoft Windows 95, Windows 98, or Windows NT 4.0, it may be possible for an unauthorized user to read or copy files from your computer using basic Internet browser software. The unauthorized user must request the file using a specific, non-standard URL, and must know or correctly guess the name of the file. Files cannot be modified or deleted, and new files cannot be written to the server.
Windows NT Server or Workstation 4.0This issue may affect two different products with similar names: Personal Web Server and FrontPage Personal Web Server.
How to Determine If You Are Using Personal Web Server 4.0
The English version of this fix should have the following file attributes or later:
You can download the patch from the Microsoft Download Center.
The following file is available for download from the Microsoft Download Center:
For additional information about how to download Microsoft Support files, click the following article number to view the article in the Microsoft Knowledge Base:
Download Pwssecup.exe now
Collapse this imageExpand this image
119591Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help to prevent any unauthorized changes to the file. If you have Personal Web Server 4.0 installed on a computer running Windows NT 4.0:
(http://support.microsoft.com/kb/119591/EN-US/ )How to Obtain Microsoft Support Files from Online Services
To resolve this problem, obtain the latest service pack for Windows NT 4.0 or the individual software update. For information on obtaining the latest service pack, please go to:
How to Determine If You Are Using FrontPage Personal Web Server
To Apply the Patch
http://support.microsoft.com/contactus/NOTE: Personal Web Server (all versions) running on Microsoft Windows NT 4.0 is not affected by this issue.
Windows NT Server 4.0, Terminal Server EditionTo resolve this problem, obtain the latest service pack for Windows NT Server 4.0, Terminal Server Edition. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/152734/ )How to obtain the latest Windows NT 4.0 service pack
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section. This problem was first corrected in Windows NT Server version 4.0, Terminal Server Edition Service Pack 6.
For more information about this vulnerability, please see the following Microsoft Web site:
http://www.microsoft.com/technet/security/bulletin/ms99-010.mspxFor additional security-related information about Microsoft products, please visit the following Microsoft Web site:
http://www.microsoft.com/securityFor more information about Windows 98 and Windows 98 Second Edition hotfixes, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/206071/ )General Information About Windows 98 and Windows 98 Second Edition Hotfixes
Article ID: 217763 - Last Review: November 1, 2013 - Revision: 8.0