Mandrake Linux Security Advisory : webmin (MDKSA-2007:135)
Medium Nessus Plugin ID 25601
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionMultiple cross-site scripting (XSS) vulnerabilities were discovered in pam_login.cgi in webmin prior to version 1.350, which could allow a remote attacker to inject arbitrary web script or HTML.
Updated packages have been patched to prevent this issue.
SolutionUpdate the affected webmin package.