REDHAT-BUG-584118
First published: Tue Apr 20 2010(Updated: )
RHN Satellite incorrectly exposed an obsolete XML-RPC API for configuring package group (comps.xml) files for channels. An authenticated user could use this flaw to gain access to arbitrary files accessible to the RHN Satellite server process, and prevent clients from performing certain yum operations.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Satellite |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of REDHAT-BUG-584118?
REDHAT-BUG-584118 is considered a moderate to high severity vulnerability due to its potential to expose arbitrary files.
How do I fix REDHAT-BUG-584118?
To fix REDHAT-BUG-584118, ensure that you update your Red Hat RHN Satellite software to the latest version that addresses this vulnerability.
Who is affected by REDHAT-BUG-584118?
Any authenticated user on the Red Hat RHN Satellite platform may be impacted by REDHAT-BUG-584118.
Can REDHAT-BUG-584118 allow unauthorized access?
Yes, REDHAT-BUG-584118 can allow authenticated users to access arbitrary files, which may result in unauthorized data exposure.
What are the implications of REDHAT-BUG-584118?
The implications of REDHAT-BUG-584118 include potential data breaches and disruption of yum operations on affected systems.
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-1171
- agent/severity
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/red hat
- canonical/red hat satellite