Detections
Analytics

Webmin Default Configuration 'root' Logon

info Nessus Network Monitor Plugin ID 9526

Synopsis

The remote Webmin installation uses the default account 'root'.

Description

Traffic observed from this server indicates Webmin is installed. Further, it is using default logon of 'root' when remotely controlling the system administered by Webmin.

Solution

Ensure that such behavior is in alignment with corporate policies and guidelines.

See Also

http://www.webmin.com/security.html

Plugin Details

Severity: Info

ID: 9526

Family: CGI

Published: 8/25/2016

Updated: 5/18/2018

Vulnerability Information

CPE: cpe:/a:webmin:webmin