rhn-proxy is vulnerable to man-in-the-middle attacks. The traffic between the client and the proxy is not secured by SSL when the proxy is used to connect to RHN Satellite. This allows a remote attacker to perform a man-in-the-middle attack on client and the proxy and sniff the network traffic for confidential information, or perform modifications on the network traffic.