CVE-1999-1074

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 31, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1074 is a vulnerability affecting older versions of Webmin before 0.5. This issue allows remote attackers to attempt an unlimited number of invalid passwords for a valid username. By using brute force attacks, an attacker could eventually guess the correct password and gain privileged access to the system. This vulnerability poses a significant risk to systems that have not been updated to a patched version of Webmin. It is strongly recommended that affected systems are upgraded as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Webmin

Affected Vendors

The Webmin Community

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlRnm
https://www.cve.org/CVERecord?id=CVE-1999-1074
https://nvd.nist.gov/vuln/detail/CVE-1999-1074

Back to Vulnerability Database