← CVECheck
HomeVulnerabilities

CVE-1999-1074 — HIGH severity vulnerability (Webmin before 0.5 does not restrict the number of invalid pa)

Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking.

CVE IDCVE-1999-1074
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1999-12-31
Last modified2026-04-16
DescriptionWebmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →