SecuritySpace - CVE-2012-4893

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2012-4893

Description: Multiple cross-site request forgery (CSRF) vulnerabilities in file/show.cgi in Webmin 1.590 and earlier allow remote attackers to hijack the authentication of privileged users for requests that (1) read files or execute (2) tar, (3) zip, or (4) gzip commands, a different issue than CVE-2012-2982.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-4893
CERT/CC vulnerability note: VU#788478
http://www.kb.cert.org/vuls/id/788478
http://americaninfosec.com/research/index.html
http://www.americaninfosec.com/research/dossiers/AISG-12-001.pdf

CVE ID:	CVE-2012-4893
Description:	Multiple cross-site request forgery (CSRF) vulnerabilities in file/show.cgi in Webmin 1.590 and earlier allow remote attackers to hijack the authentication of privileged users for requests that (1) read files or execute (2) tar, (3) zip, or (4) gzip commands, a different issue than CVE-2012-2982.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2012-4893 CERT/CC vulnerability note: VU#788478 http://www.kb.cert.org/vuls/id/788478 http://americaninfosec.com/research/index.html http://www.americaninfosec.com/research/dossiers/AISG-12-001.pdf