Jon00, I think you did the right thing by posting that "tidbit" in the HS forums. If it were not for you, this problem would not be known about at all. At least this gives us fair warning to allow HS to fix the problem, and allow HS users to turn off guest access in the mean time.
I also understand you not wanting to let the "cat out of the bag". If the problem was publicly known, then it would be very easy to exploit. As it is, no one knows what the problem is, and therefore no one can not take advantage of it.
As it is right now, there is no way someone can take complete control of your HS computer. So this should not be blown out of proportion as others have said. It is just that some private information, such as caller ID information and other web pages in your HS/html directory could potentially be seen. This "problem" is contained strictly to the HS/HTML folder and below. It is not even possible for someone to control any of your events or devices from what I understand.
When HST gets the issue taken care of, I am sure they will announce sometihing and make everyone aware of what should be done to fix it. Hopefully.....
On another note, it is amazing how Google Picked up on this so fast! Woah!
I also understand you not wanting to let the "cat out of the bag". If the problem was publicly known, then it would be very easy to exploit. As it is, no one knows what the problem is, and therefore no one can not take advantage of it.
As it is right now, there is no way someone can take complete control of your HS computer. So this should not be blown out of proportion as others have said. It is just that some private information, such as caller ID information and other web pages in your HS/html directory could potentially be seen. This "problem" is contained strictly to the HS/HTML folder and below. It is not even possible for someone to control any of your events or devices from what I understand.
When HST gets the issue taken care of, I am sure they will announce sometihing and make everyone aware of what should be done to fix it. Hopefully.....
On another note, it is amazing how Google Picked up on this so fast! Woah!