 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.54844 |
| Category: | Gentoo Local Security Checks |
| Title: | Gentoo Security Advisory GLSA 200502-12 (Webmin) |
| Summary: | The remote host is missing updates announced in;advisory GLSA 200502-12. |
| Description: | Summary: The remote host is missing updates announced in advisory GLSA 200502-12. Vulnerability Insight: Portage-built Webmin binary packages accidentally include a file containing the local encrypted root password. Solution: Webmin users should delete any old shared Webmin binary package as soon as possible. They should also consider their buildhost root password potentially exposed and follow proper audit procedures. If you plan to build binary packages, you should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-admin/webmin-1.170-r3' CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2005-0427 http://www.gentoo.org/security/en/glsa/glsa-200502-12.xml http://bugs.gentoo.org/show_bug.cgi?id=77731 XForce ISS Database: webmin-encrypted-password(19315) https://exchange.xforce.ibmcloud.com/vulnerabilities/19315 |
| Copyright | Copyright (C) 2008 E-Soft Inc. |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |