← voltar
CVE-2002-1672

CVE-2002-1672

EPSS 0.4%
Webmin 0.92, when installed from an RPM, creates /var/webmin with insecure permissions (world readable), which could allow local users to read the root user's cookie-based authentication credentials and possibly hijack the root user's session using the credentials.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://online.securityfocus.com/archive/1/263181https://exchange.xforce.ibmcloud.com/vulnerabilities/8595http://www.securityfocus.com/bid/4328http://www.webmin.com/changes.html