Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2011-1937

Cross-site scripting (XSS) vulnerability in Webmin 1.540 and earlier allows local users to inject arbitrary web script or HTML via a chfn command that changes the real (aka Full Name) field, related to useradmin/index.cgi and useradmin/user-lib.pl.

Published

2011-05-31T20:55:05.173

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-79

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	webmin	webmin	≤ 1.540	Yes
Application	webmin	webmin	0.75	Yes
Application	webmin	webmin	0.76	Yes
Application	webmin	webmin	0.77	Yes
Application	webmin	webmin	0.78	Yes
Application	webmin	webmin	0.79	Yes
Application	webmin	webmin	0.80	Yes
Application	webmin	webmin	0.81	Yes
Application	webmin	webmin	0.82	Yes
Application	webmin	webmin	0.83	Yes
Application	webmin	webmin	0.84	Yes
Application	webmin	webmin	0.85	Yes
Application	webmin	webmin	0.86	Yes
Application	webmin	webmin	0.87	Yes
Application	webmin	webmin	0.88	Yes
Application	webmin	webmin	0.91	Yes
Application	webmin	webmin	0.92	Yes
Application	webmin	webmin	0.93	Yes
Application	webmin	webmin	0.94	Yes
Application	webmin	webmin	0.950	Yes
Application	webmin	webmin	0.960	Yes
Application	webmin	webmin	0.970	Yes
Application	webmin	webmin	0.980	Yes
Application	webmin	webmin	0.990	Yes
Application	webmin	webmin	1.000	Yes
Application	webmin	webmin	1.010	Yes
Application	webmin	webmin	1.020	Yes
Application	webmin	webmin	1.030	Yes
Application	webmin	webmin	1.040	Yes
Application	webmin	webmin	1.050	Yes
Application	webmin	webmin	1.060	Yes
Application	webmin	webmin	1.070	Yes
Application	webmin	webmin	1.080	Yes
Application	webmin	webmin	1.090	Yes
Application	webmin	webmin	1.100	Yes
Application	webmin	webmin	1.110	Yes
Application	webmin	webmin	1.121	Yes
Application	webmin	webmin	1.130	Yes
Application	webmin	webmin	1.140	Yes
Application	webmin	webmin	1.150	Yes
Application	webmin	webmin	1.160	Yes
Application	webmin	webmin	1.170	Yes
Application	webmin	webmin	1.180	Yes
Application	webmin	webmin	1.190	Yes
Application	webmin	webmin	1.200	Yes
Application	webmin	webmin	1.210	Yes
Application	webmin	webmin	1.220	Yes
Application	webmin	webmin	1.230	Yes
Application	webmin	webmin	1.240	Yes
Application	webmin	webmin	1.250	Yes
Application	webmin	webmin	1.260	Yes
Application	webmin	webmin	1.270	Yes
Application	webmin	webmin	1.280	Yes
Application	webmin	webmin	1.290	Yes
Application	webmin	webmin	1.300	Yes
Application	webmin	webmin	1.310	Yes
Application	webmin	webmin	1.320	Yes
Application	webmin	webmin	1.330	Yes
Application	webmin	webmin	1.340	Yes
Application	webmin	webmin	1.350	Yes
Application	webmin	webmin	1.360	Yes
Application	webmin	webmin	1.370	Yes
Application	webmin	webmin	1.380	Yes
Application	webmin	webmin	1.390	Yes
Application	webmin	webmin	1.400	Yes
Application	webmin	webmin	1.410	Yes
Application	webmin	webmin	1.420	Yes
Application	webmin	webmin	1.430	Yes
Application	webmin	webmin	1.440	Yes
Application	webmin	webmin	1.441	Yes
Application	webmin	webmin	1.450	Yes
Application	webmin	webmin	1.460	Yes
Application	webmin	webmin	1.470	Yes
Application	webmin	webmin	1.480	Yes
Application	webmin	webmin	1.490	Yes
Application	webmin	webmin	1.500	Yes
Application	webmin	webmin	1.510	Yes
Application	webmin	webmin	1.520	Yes
Application	webmin	webmin	1.530	Yes

References

http://javierb.com.ar/2011/04/24/xss-webmin-1-540/ Exploit ([email protected])
http://openwall.com/lists/oss-security/2011/05/22/1 ([email protected])
http://openwall.com/lists/oss-security/2011/05/24/7 Exploit ([email protected])
http://securityreason.com/securityalert/8264 ([email protected])
http://securitytracker.com/id?1025438 Exploit ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2011:109 ([email protected])
http://www.securityfocus.com/archive/1/517658 Exploit ([email protected])
http://www.securityfocus.com/bid/47558 ([email protected])
http://www.youtube.com/watch?v=CUO7JLIGUf0 Exploit ([email protected])
https://github.com/webmin/webmin/commit/46e3d3ad195dcdc1af1795c96b6e0dc778fb6881 Patch ([email protected])
http://javierb.com.ar/2011/04/24/xss-webmin-1-540/ Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2011/05/22/1 (af854a3a-2127-422b-91ae-364da2661108)
http://openwall.com/lists/oss-security/2011/05/24/7 Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://securityreason.com/securityalert/8264 (af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1025438 Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:109 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/517658 Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/47558 (af854a3a-2127-422b-91ae-364da2661108)
http://www.youtube.com/watch?v=CUO7JLIGUf0 Exploit (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/webmin/webmin/commit/46e3d3ad195dcdc1af1795c96b6e0dc778fb6881 Patch (af854a3a-2127-422b-91ae-364da2661108)