mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
128 lines
3.9 KiB
JSON
128 lines
3.9 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve@mitre.org",
|
|
"ID" : "CVE-2005-3042",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "n/a",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "miniserv.pl in Webmin before 1.230 and Usermin before 1.160, when \"full PAM conversations\" is enabled, allows remote attackers to bypass authentication by spoofing session IDs via certain metacharacters (line feed or carriage return)."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "20050921 [SNS Advisory No.83] Webmin/Usermin PAM Authentication Bypass Vulnerability",
|
|
"refsource" : "BUGTRAQ",
|
|
"url" : "http://archives.neohapsis.com/archives/bugtraq/2005-09/0257.html"
|
|
},
|
|
{
|
|
"name" : "http://www.lac.co.jp/business/sns/intelligence/SNSadvisory_e/83_e.html",
|
|
"refsource" : "MISC",
|
|
"url" : "http://www.lac.co.jp/business/sns/intelligence/SNSadvisory_e/83_e.html"
|
|
},
|
|
{
|
|
"name" : "http://www.webmin.com/changes-1.230.html",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://www.webmin.com/changes-1.230.html"
|
|
},
|
|
{
|
|
"name" : "http://www.webmin.com/uchanges-1.160.html",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://www.webmin.com/uchanges-1.160.html"
|
|
},
|
|
{
|
|
"name" : "GLSA-200509-17",
|
|
"refsource" : "GENTOO",
|
|
"url" : "http://www.gentoo.org/security/en/glsa/glsa-200509-17.xml"
|
|
},
|
|
{
|
|
"name" : "MDKSA-2005:176",
|
|
"refsource" : "MANDRIVA",
|
|
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2005:176"
|
|
},
|
|
{
|
|
"name" : "SUSE-SR:2005:024",
|
|
"refsource" : "SUSE",
|
|
"url" : "http://www.novell.com/linux/security/advisories/2005_24_sr.html"
|
|
},
|
|
{
|
|
"name" : "JVN#40940493",
|
|
"refsource" : "JVN",
|
|
"url" : "http://jvn.jp/jp/JVN%2340940493/index.html"
|
|
},
|
|
{
|
|
"name" : "14889",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/14889"
|
|
},
|
|
{
|
|
"name" : "ADV-2005-1791",
|
|
"refsource" : "VUPEN",
|
|
"url" : "http://www.vupen.com/english/advisories/2005/1791"
|
|
},
|
|
{
|
|
"name" : "19575",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://www.osvdb.org/19575"
|
|
},
|
|
{
|
|
"name" : "16858",
|
|
"refsource" : "SECUNIA",
|
|
"url" : "http://secunia.com/advisories/16858"
|
|
},
|
|
{
|
|
"name" : "17282",
|
|
"refsource" : "SECUNIA",
|
|
"url" : "http://secunia.com/advisories/17282"
|
|
},
|
|
{
|
|
"name" : "17",
|
|
"refsource" : "SREASON",
|
|
"url" : "http://securityreason.com/securityalert/17"
|
|
}
|
|
]
|
|
}
|
|
}
|