June 21, 2001

Mandrake advisory for webmin

Author: JT Smith

LinuxSecurity.com: "Recently, Caldera found that when webmin starts a system daemon from
the web frontend it does not clear its environment variables. Since
these variables contain the authorization of the administrator, any
daemon would also get these variables."


  • Linux
Click Here!