Vigil@nce: Vsftpd Webmin Module, vulnerability
December 2009 by Vigil@nce
SYNTHESIS OF THE VULNERABILITY
A vulnerability was announced in the Vsftpd module for Webmin.
Severity: 1/4
Consequences: user access/rights
Provenance: intranet client
Means of attack: no proof of concept, no attack
Ability of attacker: expert (4/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Creation date: 30/12/2009
IMPACTED PRODUCTS
– vsftpd
– Webmin
DESCRIPTION OF THE VULNERABILITY
The Vsftpd module for Webmin is used to administer the FTP site
via a web interface.
A vulnerability was announced in the Vsftpd module for Webmin.
Technical details are unknown.
CHARACTERISTICS
Identifiers: VIGILANCE-VUL-9319
http://vigilance.fr/vulnerability/Vsftpd-Webmin-Module-vulnerability-9319