Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with permissions to revoke end entity certificates to revoke the Certificate Authority (CA) certificate.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Certificate_system | Redhat | * | 8.1 (including) |
| Certificate_system | Redhat | 7.1 (including) | 7.1 (including) |
| Certificate_system | Redhat | 7.2 (including) | 7.2 (including) |
| Certificate_system | Redhat | 7.3 (including) | 7.3 (including) |
| Certificate_system | Redhat | 8 (including) | 8 (including) |
| Certificate_system | Redhat | 8.0 (including) | 8.0 (including) |
| Dogtag_certificate_system | Redhat | * | * |
| Red Hat Certificate System 8 | RedHat | pki-common-0:8.1.1-1.el5pki | * |
| Red Hat Certificate System 8 | RedHat | pki-tps-0:8.1.1-1.el5pki | * |
| Red Hat Certificate System 8 | RedHat | pki-util-0:8.1.1-1.el5pki | * |
References
- http://osvdb.org/84098
- http://rhn.redhat.com/errata/RHSA-2012-1103.html
- http://secunia.com/advisories/50013
- http://www.securityfocus.com/bid/54608
- http://www.securitytracker.com/id?1027284
- https://bugzilla.redhat.com/show_bug.cgi?id=836268
- https://exchange.xforce.ibmcloud.com/vulnerabilities/77102
- https://fedorahosted.org/pki/changeset/2430
- http://osvdb.org/84098
- http://rhn.redhat.com/errata/RHSA-2012-1103.html
- http://secunia.com/advisories/50013
- http://www.securityfocus.com/bid/54608
- http://www.securitytracker.com/id?1027284
- https://bugzilla.redhat.com/show_bug.cgi?id=836268
- https://exchange.xforce.ibmcloud.com/vulnerabilities/77102
- https://fedorahosted.org/pki/changeset/2430