CVE-2002-2360

Sažetak

The RPC module in Webmin 0.21 through 0.99, when installed without root or admin privileges, allows remote attackers to read and write to arbitrary files and execute arbitrary commands via remote_foreign_require and remote_foreign_call requests.

Reference

http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-08/0403.html
http://www.iss.net/security_center/static/9983.php
http://www.securiteam.com/unixfocus/5CP0R1P80G.html
http://www.securityfocus.com/bid/5591

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

05-09-2008 - 20:33

Objavljeno

31-12-2002 - 05:00