Microsoft FrontPage Extension shtml.dll Anonymous Account Information Disclosure
Remote / Network Access
Loss of Confidentiality
Microsoft FrontPage contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when sending a HTTP RPC POST request to the 'shtml.dll' extension, which will disclose the name of the anonymous Internet account resulting in a loss of confidentiality.
Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.