EUVD-2008-3258

Malware in sbrugna...

RHSA-2008:0815 Red Hat Security Advisory: yum-rhn-plugin security update

Bulletin has no description...

Privilege Escalation

yum-rhn-plugin is vulnerable to privilege escalation. The vulnerability exists as it was discovered that yum-rhn-plugin did not verify the SSL certificate for all communication with a Red Hat Network server. An attacker able to redirect the network communication between a victim and an RHN server...

Scientific Linux Security Update : yum-rhn-plugin on SL5.x i386/x86_64

It was discovered that yum-rhn-plugin did not verify the SSL certificate for all communication with a Red Hat Network server. An attacker able to redirect the network communication between a victim and an RHN server could use this flaw to provide malicious repository metadata. This metadata could...

RedHat Update for yum-rhn-plugin RHSA-2008:0815-01

Check for the Version of yum-rhn-plugin OpenVAS Vulnerability Test RedHat Update for yum-rhn-plugin RHSA-2008:0815-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

RedHat Update for yum-rhn-plugin RHSA-2008:0815-01

Check for the Version of yum-rhn-plugin OpenVAS Vulnerability Test RedHat Update for yum-rhn-plugin RHSA-2008:0815-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

Design/Logic Flaw

yum-rhn-plugin in Red Hat Enterprise Linux RHEL 5 does not verify the SSL certificate for a file download from a Red Hat Network RHN server, which makes it easier for remote man-in-the-middle attackers to cause a denial of service loss of updates or force the download and installation of official...

CVE-2008-3270

yum-rhn-plugin in Red Hat Enterprise Linux RHEL 5 does not verify the SSL certificate for a file download from a Red Hat Network RHN server, which makes it easier for remote man-in-the-middle attackers to cause a denial of service loss of updates or force the download and installation of official...

CVE-2008-3270

yum-rhn-plugin in Red Hat Enterprise Linux RHEL 5 does not verify the SSL certificate for a file download from a Red Hat Network RHN server, which makes it easier for remote man-in-the-middle attackers to cause a denial of service loss of updates or force the download and installation of official...

CVE-2008-3270

CVE-2008-3270 affects yum-rhn-plugin on Red Hat Enterprise Linux 5. The root cause is that the plugin fails to verify the SSL certificate when contacting the Red Hat Network, enabling a man-in-the-middle to potentially cause a denial of service (loss of updates) or force installation of unrequest...

RHEL 5 : yum-rhn-plugin (RHSA-2008:0815)

The remote Redhat Enterprise Linux 5 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2008:0815 advisory. The yum-rhn-plugin provides support for yum to securely access a Red Hat Network RHN server for software updates. It was discovered that yum-rhn-plug...

Moderate: Red Hat Security Advisory: yum-rhn-plugin security update

Updated yum-rhn-plugin packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The yum-rhn-plugin provides support for yum to securely access a Red Hat Network RHN...