CVE-2009-0788 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2009-0788 Interim 1 4 2024-07-26T02:26:36Z current 2021-05-30T12:46:09Z 2024-07-26T02:26:36Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2009-0788 Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server as an inadvertent proxy to connect to arbitrary services and IP addresses via unspecified vectors. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Manager Proxy Module 4.3 SUSE Manager Server Module 4.3 spacewalk-backend spacewalk-backend-app spacewalk-backend-applet spacewalk-backend-config-files spacewalk-backend-config-files-common spacewalk-backend-config-files-tool spacewalk-backend-iss spacewalk-backend-iss-export spacewalk-backend-package-push-server spacewalk-backend-server spacewalk-backend-sql spacewalk-backend-sql-postgresql spacewalk-backend-tools spacewalk-backend-xml-export-libs spacewalk-backend-xmlrpc spacewalk-backend as a component of SUSE Manager Proxy Module 4.3 spacewalk-backend as a component of SUSE Manager Server Module 4.3 spacewalk-backend-app as a component of SUSE Manager Server Module 4.3 spacewalk-backend-applet as a component of SUSE Manager Server Module 4.3 spacewalk-backend-config-files as a component of SUSE Manager Server Module 4.3 spacewalk-backend-config-files-common as a component of SUSE Manager Server Module 4.3 spacewalk-backend-config-files-tool as a component of SUSE Manager Server Module 4.3 spacewalk-backend-iss as a component of SUSE Manager Server Module 4.3 spacewalk-backend-iss-export as a component of SUSE Manager Server Module 4.3 spacewalk-backend-package-push-server as a component of SUSE Manager Server Module 4.3 spacewalk-backend-server as a component of SUSE Manager Server Module 4.3 spacewalk-backend-sql as a component of SUSE Manager Server Module 4.3 spacewalk-backend-sql-postgresql as a component of SUSE Manager Server Module 4.3 spacewalk-backend-tools as a component of SUSE Manager Server Module 4.3 spacewalk-backend-xml-export-libs as a component of SUSE Manager Server Module 4.3 spacewalk-backend-xmlrpc as a component of SUSE Manager Server Module 4.3 Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server as an inadvertent proxy to connect to arbitrary services and IP addresses via unspecified vectors. CVE-2009-0788 SUSE Manager Proxy Module 4.3:spacewalk-backend SUSE Manager Server Module 4.3:spacewalk-backend SUSE Manager Server Module 4.3:spacewalk-backend-app SUSE Manager Server Module 4.3:spacewalk-backend-applet SUSE Manager Server Module 4.3:spacewalk-backend-config-files SUSE Manager Server Module 4.3:spacewalk-backend-config-files-common SUSE Manager Server Module 4.3:spacewalk-backend-config-files-tool SUSE Manager Server Module 4.3:spacewalk-backend-iss SUSE Manager Server Module 4.3:spacewalk-backend-iss-export SUSE Manager Server Module 4.3:spacewalk-backend-package-push-server SUSE Manager Server Module 4.3:spacewalk-backend-server SUSE Manager Server Module 4.3:spacewalk-backend-sql SUSE Manager Server Module 4.3:spacewalk-backend-sql-postgresql SUSE Manager Server Module 4.3:spacewalk-backend-tools SUSE Manager Server Module 4.3:spacewalk-backend-xml-export-libs SUSE Manager Server Module 4.3:spacewalk-backend-xmlrpc important 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N