3 matches found
RHEL 5 : Red Hat Network Satellite server spacewalk-java (RHSA-2011:0879)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0879 advisory. Red Hat Network RHN Satellite provides a solution to organizations requiring absolute control over and privacy of the maintenance and package...
CVE-2009-4139
The CVE-2009-4139 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in Spacewalk’s spacewalk-java (version 1.2.39) used by Red Hat Network Satellite server (5.3.0–5.4.1) and related products. The issue allows an attacker, by deceiving an authenticated user, to hijack that user’s s...
CVE-2009-4139 Spacewalk-java: spacewalk: red hat network satellite: spacewalk java: privilege escalation via cross-site request forgery
A flaw was found in Spacewalk Java site packages. This cross-site request forgery CSRF vulnerability allows a remote attacker to hijack the authentication of arbitrary users. This can lead to unauthorized actions, including disabling user accounts, adding new user accounts, or escalating privileg...