Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0556

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0556
Last Modified 07 Mar 2011 10:04:53
Published 18 Feb 2008 07:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0556

Summary

Cross-site request forgery (CSRF) vulnerability in OpenCA PKI 0.9.2.5, and possibly earlier versions, allows remote attackers to perform unauthorized actions as authorized users via a link or IMG tag to RAServer.

Vulnerable Systems

Application

  • Openca Pki 0.9.2.5


References

CERT-VN - VU#264385

MISC - https://www.cynops.de/advisories/CVE-2008-0556.txt

XF - openca-certificate-csrf(40476)

VUPEN - ADV-2008-0588

SECUNIA - 28951

FULLDISC - 20080213 OpenCA XSRF (CVE-2008-0556)

SECTRACK - 1019426


Last Updated: 27 May 2016 10:46:51