Vulnerability Description
Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server as an inadvertent proxy to connect to arbitrary services and IP addresses via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Network Satellite Server | 5.3 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/44150Vendor Advisory
- http://www.redhat.com/support/errata/RHSA-2011-0434.html
- http://www.securityfocus.com/bid/47316
- http://www.securitytracker.com/id?1025316
- http://www.vupen.com/english/advisories/2011/0967Vendor Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=491365
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66691
- http://secunia.com/advisories/44150Vendor Advisory
- http://www.redhat.com/support/errata/RHSA-2011-0434.html
- http://www.securityfocus.com/bid/47316
- http://www.securitytracker.com/id?1025316
- http://www.vupen.com/english/advisories/2011/0967Vendor Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=491365
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66691
FAQ
What is CVE-2009-0788?
CVE-2009-0788 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server ...
How severe is CVE-2009-0788?
CVE-2009-0788 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0788?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Network Satellite Server.