CVE-2009-0588
First published: Thu Mar 05 2009(Updated: )
agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redhat Certificate System | =7.3 | |
| Redhat Dogtag Certificate System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=484828
- http://www.redhat.com/support/errata/RHSA-2009-1065.html
- http://www.securityfocus.com/bid/35104
- https://bugzilla.redhat.com/show_bug.cgi?id=488706
- http://secunia.com/advisories/35242
- http://www.securitytracker.com/id?1022278
- http://secunia.com/advisories/35263
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=484828
- https://pki.fedoraproject.org/svn/pki/trunk/pki
- https://rhn.redhat.com/errata/RHSA-2009-1065.html
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- collector/nvd-index
- collector/redhat-bugzilla
- alias/CVE-2009-0588
- vendor/redhat
- canonical/redhat certificate system
- version/redhat certificate system/7.3
- canonical/redhat dogtag certificate system