Vulnerability Description
run.cgi in Webmin 0.80 and 0.88 creates temporary files with world-writable permissions, which allows local users to execute arbitrary commands.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Webmin | Webmin | 0.80 |
References
- http://archives.neohapsis.com/archives/vulnwatch/2001-q4/0015.htmlVendor Advisory
- http://www.securiteam.com/unixfocus/6R00M0K2UC.htmlVendor Advisory
- http://archives.neohapsis.com/archives/vulnwatch/2001-q4/0015.htmlVendor Advisory
- http://www.securiteam.com/unixfocus/6R00M0K2UC.htmlVendor Advisory
FAQ
What is CVE-2001-1530?
CVE-2001-1530 is a vulnerability with a CVSS score of 4.6 (MEDIUM). run.cgi in Webmin 0.80 and 0.88 creates temporary files with world-writable permissions, which allows local users to execute arbitrary commands.
How severe is CVE-2001-1530?
CVE-2001-1530 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1530?
Check the references section above for vendor advisories and patch information. Affected products include: Webmin Webmin.