Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3392

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-3392
Last Modified 07 Mar 2011 12:00:00
Published 06 Jul 2006 04:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3392

Summary

Webmin before 1.290 and Usermin before 1.220 calls the simplify_path function before decoding HTML, which allows remote attackers to read arbitrary files, as demonstrated using "..%01" sequences, which bypass the removal of "../" sequences before bytes such as "%01" are removed from the filename. NOTE: This is a different issue than CVE-2006-3274.

Vulnerable Systems

Application

  • Usermin 1.210

  • Webmin 1.2.80


References

CERT-VN - VU#999601

OSVDB - 26772

SECUNIA - 21365

SECUNIA - 20892

CONFIRM - http://www.webmin.com/changes.html

VUPEN - ADV-2006-2612

BID - 18744

BUGTRAQ - 20060715 Webmin / Usermin Arbitrary File Disclosure Vulnerability Perl

BUGTRAQ - 20060710 Re: Webmin / Usermin Arbitrary File Disclosure Vulnerability exploit

BUGTRAQ - 20060709 Webmin / Usermin Arbitrary File Disclosure Vulnerability exploit

BUGTRAQ - 20060715 Re: Webmin / Usermin Arbitrary File Disclosure Vulnerability exploit

MANDRIVA - MDKSA-2006:125

DEBIAN - DSA-1199

GENTOO - GLSA-200608-11

SECUNIA - 22556

SECUNIA - 21105

VIM - 20060630 Webmin traversal - changelog

VIM - 20060711 Re: Webmin traversal - changelog


Last Updated: 27 May 2016 10:42:58