Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Red Hat Network channel search feature, as used in RHN and Red Hat Network Satellite before 5.0.2, allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Network Satellite | <= 5.0 |
Related Weaknesses (CWE)
References
- http://osvdb.org/45765
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://www.securitytracker.com/id?1020051
- https://bugzilla.redhat.com/show_bug.cgi?id=396641
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42559
- http://osvdb.org/45765
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://www.securitytracker.com/id?1020051
- https://bugzilla.redhat.com/show_bug.cgi?id=396641
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42559
FAQ
What is CVE-2007-5961?
CVE-2007-5961 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in the Red Hat Network channel search feature, as used in RHN and Red Hat Network Satellite before 5.0.2, allows remote attackers to inject arbitrary web scrip...
How severe is CVE-2007-5961?
CVE-2007-5961 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5961?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Network Satellite.