Vulnerability Note VU#999601
Webmin and Usermin fail to sanitize user input
Webmin and Usermin do not properly sanitize user input. This vulnerability may allow a remote, unauthenticated user to view any file on the system running Webmin or Usermin.
An attacker could read any file on the computer running Webmin or Usermin.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Webmin||Unknown||-||07 Jul 2006|
CVSS Metrics (Learn More)
The Webmin team has reported this vulnerability.
This document was written by Ryan Giobbi.
- CVE IDs: CVE-2006-3392
- Date Public: 30 Jun 2006
- Date First Published: 07 Jul 2006
- Date Last Updated: 01 Aug 2006
- Severity Metric: 9.53
- Document Revision: 31
If you have feedback, comments, or additional information about this vulnerability, please send us email.