CVE-1999-1074

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 31, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1074 is a vulnerability affecting Webmin versions prior to 0.5. This issue arises from the lack of a limit on the number of incorrect password attempts for valid usernames. An attacker can exploit this weakness by engaging in brute force password cracking, eventually gaining elevated privileges. This vulnerability poses a significant risk to systems running unpatched Webmin installations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Webmin

Affected Vendors

The Webmin Community

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlRnm
https://www.cve.org/CVERecord?id=CVE-1999-1074
https://nvd.nist.gov/vuln/detail/CVE-1999-1074

Back to Vulnerability Database