Lucene search
Ubuntu.comUB:CVE-2005-3042HistorySep 22, 2005 - 12:00 a.m.
CVE-2005-3042
2005-09-2200:00:00
ubuntu.com
ubuntu.com
12
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.025 Low
EPSS
Percentile
90.2%
miniserv.pl in Webmin before 1.230 and Usermin before 1.160, when “full PAM
conversations” is enabled, allows remote attackers to bypass authentication
by spoofing session IDs via certain metacharacters (line feed or carriage
return).
Related
openvas
openvas
Gentoo Security Advisory GLSA 200509-17 (Webmin Usermin)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200509-17 (Webmin Usermin)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2005-3042
2005-09-22 04:00:00
gentoo
gentoo
Webmin, Usermin: Remote code execution through PAM authentication
2005-09-24 00:00:00
nvd
nvd
CVE-2005-3042
2005-09-22 10:03:00
nessus
nessus
Mandrake Linux Security Advisory : webmin (MDKSA-2005:176)
2006-01-15 00:00:00
GLSA-200509-17 : Webmin, Usermin: Remote code execution through PAM authentication
2005-10-05 00:00:00
Webmin < 1.230 miniserv.pl Authentication Bypass
2018-03-22 00:00:00
jvn
jvn
JVN#40940493 Webmin and Usermin authentication bypass vulnerability
2005-09-20 00:00:00
cve
cve
CVE-2005-3042
2005-09-22 10:03:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.025 Low
EPSS
Percentile
90.2%
Related for UB:CVE-2005-3042