Unrestricted Brute Force Password Cracking in Webmin

Unrestricted Brute Force Password Cracking in Webmin

CVE-1999-1074 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking.

Learn more about our User Device Pen Test.