CVE-2008-2369

Description

manzier.pxt in Red Hat Network Satellite Server before 5.1.1 has a hard-coded authentication key, which allows remote attackers to connect to the server and obtain sensitive information about user accounts and entitlements.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Affected products

RedHat / satellite5.1.1

References

MISChttp://securitytracker.com/id?1020694
MISChttp://rhn.redhat.com/errata/RHSA-2008-0630.html
VENDOR_ADVISORYhttp://secunia.com/advisories/31493
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/44452
MISChttp://www.securityfocus.com/bid/30679