Lucene search
RedhatCVE-2010-1171HistoryApr 18, 2011 - 5:55 p.m.
CVE-2010-1171
2011-04-1817:55:00
CWE-264
redhat
web.nvd.nist.gov
37
red hat
rhn satellite
cve-2010-1171
xml-rpc
api
vulnerability
nvd
security
configuration
package group
denial of service
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:N/A:P
AI Score
6.7
Confidence
Low
EPSS
0.007
Percentile
79.6%
Red Hat Network (RHN) Satellite 5.3 and 5.4 exposes a dangerous, obsolete XML-RPC API, which allows remote authenticated users to access arbitrary files and cause a denial of service (failed yum operations) via vectors related to configuration and package group (comps.xml) files for channels.
Affected configurations
Node
redhatsatelliteMatch5.3
ORredhatsatelliteMatch5.4
Related
nvd
nvd
CVE-2010-1171
2011-04-18 17:55:00
veracode
veracode
Authorization Bypass
2020-04-10 00:56:04
prion
prion
Design/Logic Flaw
2011-04-18 17:55:00
cvelist
cvelist
CVE-2010-1171
2011-04-18 17:00:00
redhat
redhat
(RHSA-2011:0434) Moderate: security update for Red Hat Network Satellite
2011-04-11 00:00:00
seebug
seebug
Red Hat Network Satellite Server安全绕过和信息泄露漏洞
2011-04-13 00:00:00
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:N/A:P
AI Score
6.7
Confidence
Low
EPSS
0.007
Percentile
79.6%
Related for CVE-2010-1171