Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2004:101: webmin Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the webmin package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2004:101 (webmin).
A vulnerability in webmin was discovered by Ludwig Nussel. A temporary directory
was used in webmin, however it did not check for the previous owner of the
directory. This could allow a possible hacker to create the directory and place
dangerous symbolic links inside.
The updated packages are patched to prevent this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:101
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.