2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2002-1947" ,
"sourceIdentifier" : "cve@mitre.org" ,
"published" : "2002-12-31T05:00:00.000" ,
"lastModified" : "2008-09-05T20:31:55.637" ,
"vulnStatus" : "Analyzed" ,
2024-07-14 02:06:08 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Webmin 0.21 through 1.0 uses the same built-in SSL key for all installations, which allows remote attackers to eavesdrop or highjack the SSL session."
}
] ,
"metrics" : {
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:L/Au:N/C:P/I:P/A:N" ,
"accessVector" : "NETWORK" ,
"accessComplexity" : "LOW" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "PARTIAL" ,
"integrityImpact" : "PARTIAL" ,
"availabilityImpact" : "NONE" ,
"baseScore" : 6.4
} ,
"baseSeverity" : "MEDIUM" ,
"exploitabilityScore" : 10.0 ,
"impactScore" : 4.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "NVD-CWE-Other"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.21:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "84B5A02C-96AB-46FD-A958-86AC0DFD1F2A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.22:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "BB1B8073-C512-4ACA-8E3F-92D46D63FBCF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.31:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B368FAD0-39A7-4115-9327-1D32BECF2F7E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.41:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2B3D7B7A-0426-4176-A759-E96024DC492D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.42:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1E3EFDEE-A99B-4D0E-B6A7-E7C285A5DFBC"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.51:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "50C3D4D4-246A-4287-AA42-CFDD0C1AE22A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.76:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F05CF0BA-0606-42E5-A631-D302FF1D59F0"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.77:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6A79B7B3-708A-42E4-B4EF-7746F6292DB5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.78:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E2F06BC0-0418-4A1C-BD4A-B7429A6CEA39"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.79:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1817FDA9-31F4-4D4A-A867-386D2F1CDB1C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.80:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "23522A64-FD03-4C5B-9A8A-5E7CDDC65CEE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.85:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E9A3F522-6E6D-446C-8694-7AE91F19F1C7"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.88:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "DBB86BC7-4A99-4C5B-9460-CDDA7C4E4041"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.91:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0B0813F3-1886-481E-8822-4BD199C4934F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.92:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6D25A7CA-ED9D-4562-8965-D4906D1BE5FA"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.93:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C1F2D028-F2F9-4CE0-A24B-7DB44D488D4E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.94:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "82EE7A9B-5688-4933-95B9-476873D44A65"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.95:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "30A57D7A-B989-4D82-B667-029A245AA6D5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.96:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C664186B-DD40-490B-B2DE-4279B00102F2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.97:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "88E1D6C5-20FE-4514-B618-312BB19E5F6C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.98:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B5017EA5-7188-4293-9FDF-5D23DCB40B12"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:0.99:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "FF6C5F07-330D-46C5-8A8B-8DF734F4640F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmin:webmin:1.0.00:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2B4A574A-5B2A-4769-B932-E1736564160A"
}
]
}
]
}
] ,
"references" : [
{
"url" : "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A06.asc" ,
"source" : "cve@mitre.org"
} ,
{
"url" : "http://www.iss.net/security_center/static/10381.php" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Patch"
]
} ,
{
"url" : "http://www.securityfocus.com/bid/5936" ,
"source" : "cve@mitre.org" ,
"tags" : [
"Patch"
]
} ,
{
"url" : "http://www.webmin.com/changes.html" ,
"source" : "cve@mitre.org"
}
]
}
