Alert icon
We're changing our privacy policy. This stuff matters.  Learn more  Dismiss

XSS in Webmin 1.540 + exploit for privilege escalation

Sign in or sign up now!
Alert icon
Upgrade to the latest Flash Player for improved playback performance. Upgrade now or more info.
1,008
Loading...
Alert icon
Sign in or sign up now!
Alert icon

Uploaded by on Apr 23, 2011

download video(OGV):
http://www.mediafire.com/?33dz14oueou531w

Details
-------------------
Webmin is affected by a XSS vulnerability in all versions prior to and including 1.540.
Webmin fails to sanitize $real in useradmin/index.cgi. $real is the "Full Name" in the finger information of the user. useradmin/index.cgi is the control panel of the "Users & Groups" section in webmin.
An attacker that has a normal user on the victim's machine could be able to change his Full Name with chfn command, inject XSS and execute commands as root.

Credits
-------------------
Javier Bassi- http://javierb.com.ar
Special thanks to barbarianbob from sla.ckers.org for compressing the XSS from 92 chars to 80.

References
-------------------
1. Advisory URL: http://javierb.com.ar/2011/04/23/xss-webmin-1-540/

Category:

Science & Technology

Tags:

License:

Standard YouTube License

  • likes, 0 dislikes

Link to this comment:

Share to:
see all

All Comments (0)

Sign In or Sign Up now to post a comment!
Loading...

Alert icon
0 / 00Unsaved Playlist Return to active list
    1. Your queue is empty. Add videos to your queue using this button:
      or sign in to load a different list.
    Loading...Loading...Saving...
    • Clear all videos from this list
    • Learn more