Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:PKG:WEBMIN-FAKE-SESSION

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Webmin Fake SessionID Initialization

Release Date

 2003/04/22

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Webmin Fake SessionID Initialization


This signature detects attempts to exploit a known vulnerability in Webmin. Webmin versions 1.050 to 1.060 are vulnerable. Attackers can send a maliciously crafted GET request to a Webmin server to bypass authorization for the Webmin interface and perform system administration tasks (such as adding and deleting users).

Extended Description

A vulnerability has been discovered in the 'Miniserv.pl' script used to invoke both Webmin and Usermin. Due to insufficient sanitization of client-supplied BASE64 encoded input, it is possible to inject a Session ID into the access control list. Successful exploitation of this vulnerability may allow an attacker to bypass typical authentication procedures, thus gaining adminstrative access to a webmin/usermin interface.

Affected Products

  • EnGarde Secure Linux Guardian Digital WebTool 1.2.0
  • HP Apache-Based Web Server 1.3.27 .00
  • HP Apache-Based Web Server 2.0.43 .00
  • HP Webmin-Based Admin 1.0.0 .01
  • SCO OpenLinux Server 3.1.1
  • SCO OpenLinux Workstation 3.1.1
  • SGI IRIX 6.5.0
  • SGI IRIX 6.5.1
  • SGI IRIX 6.5.10
  • SGI IRIX 6.5.11
  • SGI IRIX 6.5.12
  • SGI IRIX 6.5.13
  • SGI IRIX 6.5.14
  • SGI IRIX 6.5.15
  • SGI IRIX 6.5.16
  • SGI IRIX 6.5.17
  • SGI IRIX 6.5.18
  • SGI IRIX 6.5.19
  • SGI IRIX 6.5.2
  • SGI IRIX 6.5.3
  • SGI IRIX 6.5.4
  • SGI IRIX 6.5.5
  • SGI IRIX 6.5.6
  • SGI IRIX 6.5.7
  • SGI IRIX 6.5.8
  • SGI IRIX 6.5.9
  • Webmin Usermin 0.4.0
  • Webmin Usermin 0.5.0
  • Webmin Usermin 0.6.0
  • Webmin Usermin 0.7.0
  • Webmin Usermin 0.8.0
  • Webmin Usermin 0.9.0
  • Webmin Usermin 0.91.0
  • Webmin Usermin 0.92.0
  • Webmin Usermin 0.93.0
  • Webmin Usermin 0.94.0
  • Webmin Usermin 0.95.0
  • Webmin Usermin 0.96.0
  • Webmin Usermin 0.97.0
  • Webmin Usermin 0.98.0
  • Webmin Usermin 0.99.0
  • Webmin 0.970.0
  • Webmin 0.990.0
  • Webmin 1.0.0 50
  • Webmin 1.0.0 60

References

  • BugTraq: 6915
  • CVE: CVE-2003-0101
  • URL: http://archives.neohapsis.com/archives/bugtraq/2003-02/0284.html
  • URL: http://www.ciac.org/ciac/bulletins/n-058.shtml
  • URL: http://www.iss.net/security_center/static/11390.php

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out