CVE-2012-3367
N/A
N/A
Summary
Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System does not properly check certificate revocation requests made through the web interface, which allows remote attackers with permissions to revoke end entity certificates to revoke the Certificate Authority (CA) certificate.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://bugzilla.redhat.com/show_bug.cgi?id=836268
- http://www.securitytracker.com/id?1027284
- http://osvdb.org/84098
- http://secunia.com/advisories/50013
- https://fedorahosted.org/pki/changeset/2430
- https://exchange.xforce.ibmcloud.com/vulnerabilities/77102
- http://www.securityfocus.com/bid/54608
- http://rhn.redhat.com/errata/RHSA-2012-1103.html
References
- https://bugzilla.redhat.com/show_bug.cgi?id=836268
- http://www.securitytracker.com/id?1027284
- http://osvdb.org/84098
- http://secunia.com/advisories/50013
- https://fedorahosted.org/pki/changeset/2430
- https://exchange.xforce.ibmcloud.com/vulnerabilities/77102
- http://www.securityfocus.com/bid/54608
- http://rhn.redhat.com/errata/RHSA-2012-1103.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.