Vulnerabilities > CVE-2009-0588 - Unspecified vulnerability in Redhat Certificate System and Dogtag Certificate System
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Redhat
advisories |
| ||||
rpms | rhpki-ra-0:7.3.0-69.el4 |
Seebug
bulletinFamily | exploit |
description | Bugraq ID: 35104 CVE ID:CVE-2009-0588 CNCVE ID:CNCVE-20090588 Red Hat Certificate System是一款认证系统,提供强大的安全框架来确保用户的身份以及通讯的私密性。 Red Hat Certificate System处理多个代理组时存在错误,远程攻击者可以利用漏洞绕过安全限制,允许代理组在任意队列中批准或拒绝证书。 Red Hat registration authority(注册授权)是Red Hat证书系统子系统的选项,用于验证和处理注册请求,PIN重置请求和格式化请求。 Robert Mead of AusCERT报告registration authority(注册授权)不正确检查相同CGI脚本中的代理授权。在证书请求可被多个代理组处理的配置下,来自任意组的代理可以批准或拒绝其他代理组队列中证书请求。 RedHat Certificate Server 7.3 厂商解决方案 可参考如下升级程序: Certificate Server 7.3 IA-32: rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9 rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9 x86_64: rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9 rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9 |
id | SSV:11462 |
last seen | 2017-11-19 |
modified | 2009-05-28 |
published | 2009-05-28 |
reporter | Root |
title | Red Hat证书系统代理组安全绕过漏洞 |
References
- http://secunia.com/advisories/35242
- http://secunia.com/advisories/35263
- http://www.redhat.com/support/errata/RHSA-2009-1065.html
- http://www.securityfocus.com/bid/35104
- http://www.securitytracker.com/id?1022278
- https://bugzilla.redhat.com/show_bug.cgi?id=484828
- https://bugzilla.redhat.com/show_bug.cgi?id=488706