It was found that Spacewalk, all versions up to and including 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat satellite 5.8 |
||
redhat spacewalk |