CVE-2009-0588

Published: May 27, 2009Modified: Apr 23, 2026

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability: 8.0 / Impact: 6.4

Source: NVD

Description

agent/request/op.cgi in the Registration Authority (RA) component in Red Hat Certificate System (RHCS) 7.3 and Dogtag Certificate System allows remote authenticated users to approve certificate requests queued for arbitrary agent groups via a modified request ID field.

Affected (2)

Products: Redhat: Certificate System, Dogtag Certificate System

2 products

Certificate System

Dogtag Certificate System

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Certificate System	Version 7.3
Redhat Dogtag Certificate System	All versions

References (14)

http://secunia.com/advisories/35242

Source: secalert@redhat.com

http://secunia.com/advisories/35263

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2009-1065.html

Source: secalert@redhat.com

PatchVendor Advisory

http://www.securityfocus.com/bid/35104

Source: secalert@redhat.com

http://www.securitytracker.com/id?1022278

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=484828

Source: secalert@redhat.com

Patch

https://bugzilla.redhat.com/show_bug.cgi?id=488706

Source: secalert@redhat.com

http://secunia.com/advisories/35242

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/35263

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2009-1065.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/35104

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1022278

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=484828

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://bugzilla.redhat.com/show_bug.cgi?id=488706

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.