Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2002-0757

Disclosure Date: August 12, 2002
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

(1) Webmin 0.96 and (2) Usermin 0.90 with password timeouts enabled allow local and possibly remote attackers to bypass authentication and gain privileges via certain control characters in the authentication information, which can force Webmin or Usermin to accept arbitrary username/session ID combinations.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

General Information

Technical Analysis