- Thu 08 May 2003
- policy
- Gaige B. Paulsen
A significant vulnerability in Microsoft's Passport facility was found by a security enthusiast.
The exploit allows the changing of arbitrary passwords to arbitrary accounts, and through such access to services, personal information, and potentially hotmail email.
Microsoft has been alerted to the problem, but has not responded with a fix yet.