6.7 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.0%
Webmin 0.21 through 1.0 uses the same built-in SSL key for all installations, which allows remote attackers to eavesdrop or highjack the SSL session.
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A06.asc
www.iss.net/security_center/static/10381.php
www.securityfocus.com/bid/5936
www.webmin.com/changes.html