CVE-2002-2360
First published: Tue Dec 31 2002(Updated: )
The RPC module in Webmin 0.21 through 0.99, when installed without root or admin privileges, allows remote attackers to read and write to arbitrary files and execute arbitrary commands via remote_foreign_require and remote_foreign_call requests.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Webmin | =0.22 | |
| Webmin | =0.990 | |
| Webmin | =0.88 | |
| Webmin | =0.960 | |
| Webmin | =0.51 | |
| Webmin | =0.93 | |
| Webmin | =0.31 | |
| Webmin | =0.42 | |
| Webmin | =0.92 | |
| Webmin | =0.78 | |
| Webmin | =0.21 | |
| Webmin | =0.77 | |
| Webmin | =0.85 | |
| Webmin | =0.41 | |
| Webmin | =0.94 | |
| Webmin | =0.950 | |
| Webmin | =0.980 | |
| Webmin | =0.970 | |
| Webmin | =0.79 | |
| Webmin | =0.76 | |
| Webmin | =0.91 | |
| Webmin | =0.80 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2002-2360?
CVE-2002-2360 is classified as a high severity vulnerability due to its potential for unauthorized file access and command execution.
How do I fix CVE-2002-2360?
To fix CVE-2002-2360, ensure that Webmin is installed with proper root or admin privileges and update to the latest version to mitigate the vulnerability.
What versions are affected by CVE-2002-2360?
CVE-2002-2360 affects Webmin versions from 0.21 to 0.99, specifically those with improper RPC module configurations.
What are the consequences of CVE-2002-2360?
The consequences of CVE-2002-2360 include the ability for remote attackers to read and write arbitrary files and execute commands on the server.
How can I check if my Webmin installation is vulnerable to CVE-2002-2360?
You can check for CVE-2002-2360 vulnerability by reviewing your Webmin version and ensuring it is not within the affected range of 0.21 to 0.99 without appropriate configurations.
- agent/references
- agent/softwarecombine
- agent/first-publish-date
- agent/type
- agent/weakness
- agent/author
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/webmin
- canonical/webmin
- version/webmin/0.22
- version/webmin/0.990
- version/webmin/0.88
- version/webmin/0.960
- version/webmin/0.51
- version/webmin/0.93
- version/webmin/0.31
- version/webmin/0.42
- version/webmin/0.92
- version/webmin/0.78
- version/webmin/0.21
- version/webmin/0.77
- version/webmin/0.85
- version/webmin/0.41
- version/webmin/0.94
- version/webmin/0.950
- version/webmin/0.980
- version/webmin/0.970
- version/webmin/0.79
- version/webmin/0.76
- version/webmin/0.91
- version/webmin/0.80