Session fixation vulnerability in Red Hat Network (RHN) Satellite Server 5.4 allows remote attackers to hijack web sessions via unspecified vectors related to Spacewalk.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Network_satellite_server | Redhat | 5.4 (including) | 5.4 (including) |
| Red Hat Network Satellite Server v 5.4 | RedHat | spacewalk-backend-0:1.2.13-26.2.el5sat | * |
| Red Hat Network Satellite Server v 5.4 | RedHat | spacewalk-java-0:1.2.39-35.1.el5sat | * |
References
- http://secunia.com/advisories/43487
- http://www.redhat.com/support/errata/RHSA-2011-0300.html
- http://www.securityfocus.com/bid/46528
- http://www.securitytracker.com/id?1025116
- http://www.vupen.com/english/advisories/2011/0491
- https://bugzilla.redhat.com/show_bug.cgi?id=672159
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65658
- http://secunia.com/advisories/43487
- http://www.redhat.com/support/errata/RHSA-2011-0300.html
- http://www.securityfocus.com/bid/46528
- http://www.securitytracker.com/id?1025116
- http://www.vupen.com/english/advisories/2011/0491
- https://bugzilla.redhat.com/show_bug.cgi?id=672159
- https://exchange.xforce.ibmcloud.com/vulnerabilities/65658