Full title: Webmin 1.920 rpc.cgi Remote Root Exploit 
Category: remote exploits
Platform: cgi
This Metasploit module exploits Webmin versions 1.930 and below. This exploit takes advantage of a code execution issue within the function unserialise_variable() located in web-lib-funcs.pl, in order to gain root. The only prerequisite is a valid session id.

# 0day.today @ http://0day.today/