4 matches found
Debian Security Advisory DSA 1177-1 (usermin)
The remote host is missing an update to usermin announced via advisory DSA 1177-1. Hendrik Weimer discovered that it is possible for a normal user to disable the login shell of the root account via usermin, a web-based administration tool. OpenVAS Vulnerability Test $Id: deb11771.nasl 6616...
Debian DSA-1177-1 : usermin - programming error
Hendrik Weimer discovered that it is possible for a normal user to disable the login shell of the root account via usermin, a web-based administration tool. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...
CVE-2006-4246
CVE-2006-4246 affects Usermin prior to 1.220 (20060629). The vulnerability arises from how chfn/save.cgi handles an empty shell parameter, which can let remote attackers read arbitrary files and can change the root shell instead of the target user’s shell. Public sources confirm upstream fixes in...
[SECURITY] [DSA 1177-1] New usermin packages fix denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 1177-1 [email protected] http://www.debian.org/security/ Martin Schulze September 15th, 2006 http://www.debian.org/security/faq -...