CVE-2009-0588
CVE-2009-0588
agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://bugzilla.redhat.com/show_bug.cgi?id=484828https://bugzilla.redhat.com/show_bug.cgi?id=488706http://secunia.com/advisories/35242http://secunia.com/advisories/35263http://www.redhat.com/support/errata/RHSA-2009-1065.htmlhttp://www.securityfocus.com/bid/35104http://www.securitytracker.com/id?1022278