Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0588

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2009-0588
Last Modified 09 Jun 2009 01:32:40
Published 27 May 2009 12:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2009-0588

Summary

agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.

Vulnerable Systems

Application

  • Redhat Certificate System 7.3

  • Redhat Dogtag Certificate System


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=484828

REDHAT - RHSA-2009:1065

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=488706

SECTRACK - 1022278

BID - 35104

SECUNIA - 35263

SECUNIA - 35242


Last Updated: 27 May 2016 10:50:18