CVE-2008-2369

Properties

Published:
13.08.2008
Updated:
20.08.2008
Patch available:
Severity:
Medium
CVSS vector:
(AV:N/AC:L/Au:N/C:P/I:P/A:N)
Product:
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server
Red Hat: Network Satellite Server

Vulnerability description

manzier.pxt in Red Hat Network Satellite Server before 5.1.1 has a hard-coded authentication key, which allows remote attackers to connect to the server and obtain sensitive information about user accounts and entitlements.

References:

REDHAT: http://rhn.redhat.com/errata/RHSA-2008-0630.html
BID: http://www.securityfocus.com/bid/30679
SECTRACK: http://securitytracker.com/id?1020694