[mdlug] Be sure to update your Webmin
Jeff Hanson
jhansonxi at gmail.com
Sat Sep 7 22:24:22 EDT 2019
I like it but haven't used it in a few years. IIRC it's mostly written in
Perl.
On Mon, Sep 2, 2019 at 8:46 PM Gib <gibmaxn at gmail.com> wrote:
> With over 3 million downloads per year, Webmin is one of the world's
> most popular open-source web-based applications for managing
> Unix-based systems, such as Linux, FreeBSD, or OpenBSD servers
>
> According to the researcher, the security flaw resides in the password
> reset page and allows a remote, unauthenticated attacker to execute
> arbitrary commands with root privileges on affected servers just by
> adding a simple pipe command ("|") in the old password field through
> POST requests.
>
> https://thehackernews.com/2019/08/webmin-vulnerability-hacking.html
> _______________________________________________
> mdlug mailing list
> mdlug at mdlug.org
> http://mdlug.org/mailman/listinfo/mdlug
>
More information about the mdlug
mailing list