MidnightBSD

Advisories for usermin

CVE-2002-0756 HIGH

Cross-site scripting vulnerability in the authentication page for (1) Webmin 0.96 and (2) Usermin 0.90 allows remote attackers to insert script into an error page and possibly steal cookies.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
webmin webmin 0.91
usermin usermin 0.7
webmin webmin 0.96
webmin webmin 0.94
webmin webmin 0.92
usermin usermin 0.8
webmin webmin 0.92.1
usermin usermin 0.9
webmin webmin 0.93
webmin webmin 0.95
CVE-2002-0757 HIGH

(1) Webmin 0.96 and (2) Usermin 0.90 with password timeouts enabled allow local and possibly remote attackers to bypass authentication and gain privileges via certain control characters in the authentication information, which can force Webmin or Usermin to accept arbitrary username/session ID combinations.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
webmin webmin 0.91
usermin usermin 0.7
webmin webmin 0.96
webmin webmin 0.94
webmin webmin 0.92
usermin usermin 0.8
webmin webmin 0.92.1
usermin usermin 0.9
webmin webmin 0.93
webmin webmin 0.95
CVE-2003-0101 HIGH

miniserv.pl in (1) Webmin before 1.070 and (2) Usermin before 1.000 does not properly handle metacharacters such as line feeds and carriage returns (CRLF) in Base-64 encoded strings during Basic authentication, which allows remote attackers to spoof a session ID and gain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
usermin usermin 0.4
usermin usermin 0.91
usermin usermin 0.5
usermin usermin 0.99
engardelinux guardian_digital_webtool 1.2
usermin usermin 0.96
usermin usermin 0.6
webmin webmin 1.0.60
usermin usermin 0.9
usermin usermin 0.92
usermin usermin 0.94
usermin usermin 0.7
usermin usermin 0.93
usermin usermin 0.95
webmin webmin 1.0.50
usermin usermin 0.8
usermin usermin 0.97
usermin usermin 0.98
CVE-2004-0559 LOW

The maketemp.pl script in Usermin 1.070 and 1.080 allows local users to overwrite arbitrary files at install time via a symlink attack on the /tmp/.usermin directory.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
webmin webmin 1.0.80
usermin usermin 1.040
webmin webmin 1.0.90
webmin webmin 1.0.60
usermin usermin 1.030
mandrakesoft mandrake_linux 10.0
webmin webmin 1.0.50
webmin webmin 1.1.50
usermin usermin 1.060
webmin webmin 1.1.21
webmin webmin 1.1.00
webmin webmin 1.1.10
usermin usermin 1.000
usermin usermin 1.051
usermin usermin 1.080
webmin webmin 1.0.00
webmin webmin 1.1.40
webmin webmin 1.1.30
webmin webmin 1.0.70
usermin usermin 1.020
usermin usermin 1.070
mandrakesoft mandrake_linux_corporate_server 2.1
usermin usermin 1.010
webmin webmin 1.0.20
mandrakesoft mandrake_linux 9.2
CVE-2004-0583 MEDIUM

The account lockout functionality in (1) Webmin 1.140 and (2) Usermin 1.070 does not parse certain character strings, which allows remote attackers to conduct a brute force attack to guess user IDs and passwords.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
usermin usermin 1.070
debian debian_linux 3.0
webmin webmin 1.1.40
CVE-2004-0588 MEDIUM

Cross-site scripting (XSS) vulnerability in the web mail module for Usermin 1.070 allows remote attackers to insert arbitrary HTML and script via e-mail messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
usermin usermin 1.070
CVE-2004-1468 HIGH

The web mail functionality in Usermin 1.x and Webmin 1.x allows remote attackers to execute arbitrary commands via shell metacharacters in an e-mail message.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
webmin webmin 1.0.80
usermin usermin 1.040
usermin usermin 1.000
usermin usermin 1.051
usermin usermin 1.080
webmin webmin 1.0.90
webmin webmin 1.0.00
webmin webmin 1.0.60
webmin webmin 1.1.40
usermin usermin 1.030
webmin webmin 1.1.30
webmin webmin 1.0.70
usermin usermin 1.020
webmin webmin 1.0.50
usermin usermin 1.070
webmin webmin 1.1.50
usermin usermin 1.060
webmin webmin 1.1.21
usermin usermin 1.010
webmin webmin 1.0.20
webmin webmin 1.1.00
webmin webmin 1.1.10
CVE-2005-1177 HIGH

Unknown vulnerability in (1) Webmin and (2) Usermin before 1.200 causes Webmin to change permissions and ownership of configuration files, with unknown impact.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
webmin webmin 1.0.80
webmin webmin 0.92
webmin webmin 1.1.20
usermin usermin 0.6
webmin webmin 1.0.60
usermin usermin 1.030
usermin usermin 1.140
webmin webmin 0.5
webmin webmin 1.1.10
usermin usermin 0.97
usermin usermin 0.98
usermin usermin 1.120
webmin webmin 1.0.40
webmin webmin 0.94
webmin webmin 0.97
usermin usermin 0.5
usermin usermin 0.99
usermin usermin 1.051
usermin usermin 1.080
usermin usermin 0.96
webmin webmin 1.0.00
webmin webmin 1.1.40
usermin usermin 0.9
webmin webmin 1.0.30
webmin webmin 1.1.30
webmin webmin 0.91
usermin usermin 1.100
usermin usermin 0.94
webmin webmin 0.96
webmin webmin 0.99
webmin webmin 0.7
webmin webmin 0.93
usermin usermin 1.040
usermin usermin 0.91
webmin webmin 1.0.90
usermin usermin 0.92
usermin usermin 1.110
usermin usermin 0.7
usermin usermin 0.95
webmin webmin 0.98
usermin usermin 1.060
webmin webmin 1.1.00
usermin usermin 0.8
webmin webmin 0.4
webmin webmin 0.95
webmin webmin 0.90
webmin webmin 0.6
usermin usermin 0.4
webmin webmin 1.0.51
usermin usermin 1.000
webmin webmin 1.0.10
usermin usermin 1.090
webmin webmin 1.0.70
usermin usermin 0.93
usermin usermin 1.020
usermin usermin 1.130
usermin usermin 1.070
usermin usermin 1.010
webmin webmin 1.0.20
webmin webmin 0.80
CVE-2005-3042 HIGH

miniserv.pl in Webmin before 1.230 and Usermin before 1.160, when "full PAM conversations" is enabled, allows remote attackers to bypass authentication by spoofing session IDs via certain metacharacters (line feed or carriage return).

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
webmin webmin 1.2.20
usermin usermin 1.150
CVE-2006-3392 MEDIUM

Webmin before 1.290 and Usermin before 1.220 calls the simplify_path function before decoding HTML, which allows remote attackers to read arbitrary files, as demonstrated using "..%01" sequences, which bypass the removal of "../" sequences before bytes such as "%01" are removed from the filename. NOTE: This is a different issue than CVE-2006-3274.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
webmin webmin *
usermin usermin *