Executive Summary

Summary
Title foreman-proxy security update
Informations
Name RHSA-2014:0770 First vendor Publication 2014-06-19
Vendor RedHat Last vendor Modification 2014-06-19
Severity (Vendor) Critical Revision 01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

An updated foreman-proxy package that fixes one security issue is now available for Red Hat Enterprise Linux OpenStack Platform 3.0 and 4.0.

The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux OpenStack Platform 3.0 - noarch Red Hat Enterprise Linux OpenStack Platform 4.0 - noarch

3. Description:

The foreman-proxy package provides a RESTful API to manage DNS, DHCP, TFTP, and Puppet settings, and can be used as part of Foreman.

A shell command injection flaw was found in the way foreman-proxy verified URLs in the TFTP module. A remote attacker could use this flaw to execute arbitrary shell commands on the system with the privileges of the user running foreman-proxy. (CVE-2014-0007)

This issue was discovered by Lukas Zapletal of Red Hat.

Note that for Red Hat Enterprise Linux OpenStack Platform 3.0, Foreman was released as a Technology Preview. More information about Red Hat Technology Previews is available at https://access.redhat.com/site/support/offerings/techpreview/

All foreman-proxy users are advised to upgrade to this updated package, which corrects this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1105369 - CVE-2014-0007 foreman-proxy: smart-proxy remote command injection

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2014-0770.html

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 32

Nessus® Vulnerability Scanner

Date Description
2014-07-17 Name : The remote host is affected by a remote command injection vulnerability.
File : foreman_smart_proxy_tftp_command_injection.nasl - Type : ACT_DESTRUCTIVE_ATTACK

Alert History

If you want to see full details history, please login or register.
0
1
2
Date Informations
2014-06-23 21:25:58
  • Multiple Updates
2014-06-20 21:31:10
  • Multiple Updates
2014-06-19 17:22:47
  • First insertion