Webmin / Usermin Remote PAM Authentication Bypass Vulnerability

Bugtraq ID: 14889
Class: Input Validation Error
CVE: CVE-2005-3042
Remote: Yes
Local: No
Published: Sep 20 2005 12:00AM
Updated: Jul 12 2009 05:06PM
Credit: Keigo Yamazaki (LAC) discovered this vulnerability.
Vulnerable: Webmin Webmin 1.220
Webmin Webmin 1.210
Webmin Webmin 1.200
Webmin Usermin 1.150
Webmin Usermin 1.140
Webmin Usermin 1.130
S.u.S.E. Linux Professional 9.1 x86_64
S.u.S.E. Linux Professional 9.1
S.u.S.E. Linux Professional 9.0 x86_64
S.u.S.E. Linux Professional 9.0
S.u.S.E. Linux Personal 9.1 x86_64
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
Mandriva Linux Mandrake 2006.0 x86_64
Mandriva Linux Mandrake 2006.0
Mandriva Linux Mandrake 10.2 x86_64
Mandriva Linux Mandrake 10.2
Mandriva Linux Mandrake 10.1 x86_64
Mandriva Linux Mandrake 10.1
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
MandrakeSoft Corporate Server 2.1 x86_64
MandrakeSoft Corporate Server 2.1
Gentoo Linux
Not Vulnerable: Webmin Webmin 1.230
Webmin Usermin 1.160


 

Privacy Statement
Copyright 2010, SecurityFocus