PT-2002-2913 · Webmin · Webmin

Published

2002-12-31

Updated

2008-09-05

CVE-2002-2201

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Webmin versions 0.990 and earlier

Description: The issue allows remote attackers to execute arbitrary commands via shell metacharacters in the printer name variable. This is related to the Printer Administration module.

Recommendations: For Webmin versions 0.990 and earlier, consider disabling the Printer Administration module until a patch is available to prevent exploitation. Restrict access to the module to minimize the risk of arbitrary command execution. Avoid using shell metacharacters in the printer name variable.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-2201

Affected Products

Webmin

PT-2002-2913 · Webmin · Webmin

CVE-2002-2201

Related Identifiers

Affected Products

References · 4