Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1074

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-1999-1074
Last Modified 09 Sep 2008 08:36:49
Published 31 Dec 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-1074

Summary

Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking.

Vulnerable Systems

Application

  • Webmin 0.1

  • Webmin 0.2

  • Webmin 0.21

  • Webmin 0.22

  • Webmin 0.3

  • Webmin 0.31

  • Webmin 0.4

  • Webmin 0.41

  • Webmin 0.42


References

BUGTRAQ - 19980501 Warning! Webmin Security Advisory

CONFIRM - http://www.webmin.com/webmin/changes.html

BID - 98


Last Updated: 27 May 2016 10:35:16