Microsoft Passport exploit found

A significant vulnerability in Microsoft's Passport facility was found by a security enthusiast.

The exploit allows the changing of arbitrary passwords to artibrary accounts, and through such access to services, personal information, and potentially hotmail email.

Microsoft has been alerted to the problem, but has not responded with a fix yet.