Welcome to WebmasterWorld Guest from 188.8.131.52
Forum Moderators: open
The vulnerability is in the SmartHTML Interpreter in FPSE 2000 and 2002 and involves the way the interpreter handles requests for some Web files. The interpreter is designed to provide support for Web forms and other dynamic Web content.
Looks like MS jumped on this one quickly.
give an attacker the ability to run any code of choice
Most likely valid code too. Thanks for the heads up Korkus.
I'm trying to move away from those easy to make FP forms......FP components needing the extensions simply are not reliable enough.