30 matches found
RHSA-2009:1618 Red Hat Security Advisory: mod_jk security update for Red Hat Network Satellite Server
Bulletin has no description...
RHSA-2008:1007 Red Hat Security Advisory: tomcat security update for Red Hat Network Satellite Server
Bulletin has no description...
RHSA-2008:0525 Red Hat Security Advisory: Red Hat Network Satellite Server Solaris client security update
Bulletin has no description...
RHSA-2007:1069 Red Hat Security Advisory: tomcat security update for Red Hat Network Satellite Server
Bulletin has no description...
RHSA-2010:0471 Red Hat Security Advisory: Red Hat Network Satellite Server IBM Java Runtime security update
Bulletin has no description...
RHSA-2008:0636 Red Hat Security Advisory: Red Hat Network Satellite Server Sun Java Runtime security update
Bulletin has no description...
Cobbler is vulnerable to code injection
templateapi.py in Cobbler before 2.0.7, as used in Red Hat Network Satellite Server and other products, does not disable the ability of the Cheetah template engine to execute Python statements contained in templates, which allows remote authenticated administrators to execute arbitrary code via a...
GHSA-JHM7-38XJ-PVM8 Cobbler is vulnerable to code injection
templateapi.py in Cobbler before 2.0.7, as used in Red Hat Network Satellite Server and other products, does not disable the ability of the Cheetah template engine to execute Python statements contained in templates, which allows remote authenticated administrators to execute arbitrary code via a...
Remote Code Execution (RCE)
Cobbler is vulnerable to Remote Code Execution RCE. A code injection flaw was found in the way Cobbler processed templates for kickstart files. A remote, authenticated user, that has the Configuration Administrator role privilege, could use this flaw to create a specially-crafted kickstart templa...
Information Disclosure
modperl is vulnerable to information disclosure. It was discovered that Red Hat Network Satellite Server shipped with an XML-RPC script, manzier.pxt, which had a single hard-coded authentication key. A remote attacker who is able to connect to the Satellite Server XML-RPC service could use this...
Unauthorized Time Zone Modification
IBM Java Runtime Environment shipped as part of Red Hat Network Satellite Server has a vulnerability which affects the time zone information of the application. The vulnerability is possible because java.util.TimeZone fails to prevent the untrusted Java application or applet to change the time zo...
RHEL 5 / 6 : IBM Java Runtime in Satellite Server (RHSA-2013:1455) (BEAST) (ROBOT)
Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Network Satellite Server 5.4. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
Low: Red Hat Security Advisory: Red Hat Network Satellite server IBM Java Runtime security update
Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Network Satellite Server 5.4. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
RHEL 5 : Red Hat Network Satellite Server (RHSA-2011:0300)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0300 advisory. Red Hat Network Satellite Server RHN Satellite Server is a system management tool for Linux-based infrastructures. It allows for the...
Moderate: Red Hat Security Advisory: Red Hat Network Satellite Server security update
Updated packages that fix two security issues are now available for Red Hat Network Satellite Server 5.4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
CVE-2010-2235
CVE-2010-2235 affects Cobbler: template_api.py used in Cobbler prior to 2.0.7 allows remote authenticated admins to execute arbitrary Python code via a crafted kickstart template, due to the Cheetah template engine not being restricted. This is a code injection issue in the template processing pa...
Important: Red Hat Security Advisory: cobbler security update
An updated cobbler package that fixes one security issue is now available for Red Hat Network Satellite Server 5.3. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
RHEL 4 : tomcat in Satellite Server (RHSA-2009:1617)
An updated tomcat package that fixes several security issues is now available for Red Hat Network Satellite Server 5.1. This update has been rated as having low security impact by the Red Hat Security Response Team. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JS...
RHEL 4 : mod_jk in Satellite Server (RHSA-2009:1618)
An updated modjk package that fixes one security issue is now available for Red Hat Network Satellite Server 5.1 and 5.2. This update has been rated as having low security impact by the Red Hat Security Response Team. modjk is an Apache Tomcat connector that allows Apache Tomcat and the Apache HT...
RHEL 4 : tomcat in Satellite Server (RHSA-2008:1007)
Updated tomcat packages that fix multiple security issues are now available for Red Hat Network Satellite Server. This update has been rated as having low security impact by the Red Hat Security Response Team. This update corrects several security vulnerabilities in the Tomcat component shipped a...