2 matches found
CVE-2004-0583
The account lockout functionality in 1 Webmin 1.140 and 2 Usermin 1.070 does not parse certain character strings, which allows remote attackers to conduct a brute force attack to guess user IDs and passwords...
CVE-2004-0583
The CVE-2004-0583 entry concerns Webmin 1.140 and Usermin 1.070 where the account lockout function fails to parse certain character strings, enabling remote brute-force attempts to guess user IDs and passwords. Root cause: input parsing flaw in the account lockout logic. Impact is limited to unau...