Webmin And Usermin Account Lockout Bypass Vulnerability

Bugtraq ID: 10523
Class: Input Validation Error
CVE: CVE-2004-0583
Remote: Yes
Local: No
Published: Jun 11 2004 12:00AM
Updated: Jul 12 2009 05:16AM
Credit: Discovery of this issue is credited to Keigo Yamazaki.
Vulnerable: Webmin Webmin 1.140
Webmin Webmin 1.0 70
+ HP Apache-Based Web Server 1.3.27 .01
+ HP Apache-Based Web Server 1.3.27 .01
+ HP Webmin-Based Admin 1.0.1 .01
+ HP Webmin-Based Admin 1.0.1 .01
+ Turbolinux Turbolinux Server 8.0
+ Turbolinux Turbolinux Server 8.0
+ Turbolinux Turbolinux Server 7.0
+ Turbolinux Turbolinux Server 7.0
+ Turbolinux Turbolinux Workstation 8.0
Usermin Usermin 1.0 70
Debian Linux 3.0 sparc
Debian Linux 3.0 s/390
Debian Linux 3.0 ppc
Debian Linux 3.0 mipsel
Debian Linux 3.0 mips
Debian Linux 3.0 m68k
Debian Linux 3.0 ia-64
Debian Linux 3.0 ia-32
Debian Linux 3.0 hppa
Debian Linux 3.0 arm
Debian Linux 3.0 alpha
Debian Linux 3.0
Not Vulnerable: Webmin Webmin 1.150
Usermin Usermin 1.0 80


 

Privacy Statement
Copyright 2010, SecurityFocus