Vulnerabilities > CVE-2009-0588 - Unspecified vulnerability in Redhat Certificate System and Dogtag Certificate System

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
redhat

Summary

agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.

Vulnerable Configurations

Part Description Count
Application
Redhat
2

Redhat

advisories
rhsa
idRHSA-2009:1065
rpmsrhpki-ra-0:7.3.0-69.el4

Seebug

bulletinFamilyexploit
descriptionBugraq ID: 35104 CVE ID:CVE-2009-0588 CNCVE ID:CNCVE-20090588 Red Hat Certificate System是一款认证系统,提供强大的安全框架来确保用户的身份以及通讯的私密性。 Red Hat Certificate System处理多个代理组时存在错误,远程攻击者可以利用漏洞绕过安全限制,允许代理组在任意队列中批准或拒绝证书。 Red Hat registration authority(注册授权)是Red Hat证书系统子系统的选项,用于验证和处理注册请求,PIN重置请求和格式化请求。 Robert Mead of AusCERT报告registration authority(注册授权)不正确检查相同CGI脚本中的代理授权。在证书请求可被多个代理组处理的配置下,来自任意组的代理可以批准或拒绝其他代理组队列中证书请求。 RedHat Certificate Server 7.3 厂商解决方案 可参考如下升级程序: Certificate Server 7.3 IA-32: rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9 rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9 x86_64: rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9 rhpki-ra-7.3.0-69.el4.noarch.rpm 5b5700a591bbebfd82f95ced1aa007c9
idSSV:11462
last seen2017-11-19
modified2009-05-28
published2009-05-28
reporterRoot
titleRed Hat证书系统代理组安全绕过漏洞