Lucene search
RedHatRHSA-2008:0191HistoryMar 19, 2008 - 12:00 a.m.
(RHSA-2008:0191) Important: redhat-idm-console security update
2008-03-1900:00:00
access.redhat.com
15
EPSS
0
Percentile
5.1%
The redhat-idm-console contains a Java based remote management console used
for managing Red Hat Administration Server and Red Hat Directory Server.
When running on Red Hat Enterprise Linux, Red Hat Directory Server 8.0 used
insecure permissions on the redhat-idm-console startup script. Local users
could modify this script and run arbitrary code with the privileges of the
user running Red Hat Management Console (CVE-2008-0889).
Red Hat would like to thank Doncho N. Gunchev for reporting this issue.
All redhat-idm-console users are advised to update to these erratum
packages which contain a fix to correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | src | redhat-idm-console | < 1.0.0-17.el5idm | redhat-idm-console-1.0.0-17.el5idm.src.rpm |
| RedHat | 5 | i386 | redhat-idm-console | < 1.0.0-17.el5idm | redhat-idm-console-1.0.0-17.el5idm.i386.rpm |
| RedHat | 5 | x86_64 | redhat-idm-console | < 1.0.0-17.el5idm | redhat-idm-console-1.0.0-17.el5idm.x86_64.rpm |
Related
cve
cve
CVE-2008-0889
2008-03-20 00:44:00
nvd
nvd
CVE-2008-0889
2008-03-20 00:44:00
cvelist
cvelist
CVE-2008-0889
2008-03-20 00:00:00
prion
prion
Code injection
2008-03-20 00:44:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:22:08