CVE-2009-0788

Red Hat Network Satellite Server <5.5 - Info Disclosure

Title source: llm
STIX 2.1

Description

Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server as an inadvertent proxy to connect to arbitrary services and IP addresses via unspecified vectors.

References (7)

Core 7
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/44150
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0434.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/66691
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1025316
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/47316
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=491365
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0967

Scores

EPSS 0.0171
EPSS Percentile 74.6%

Details

CWE
CWE-200
Status published
Products (2)
redhat/network_satellite_server 5.3
redhat/network_satellite_server 5.4
Published Apr 18, 2011
Tracked Since Feb 18, 2026