SecuritySpace - CVE-2017-2590

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-2590

Description: A vulnerability was found in ipa before 4.4. IdM's ca-del, ca-disable, and ca-enable commands did not properly check the user's permissions while modifying CAs in Dogtag. An authenticated, unauthorized attacker could use this flaw to delete, disable, or enable CAs causing various denial of service problems with certificate issuance, OCSP signing, and deletion of secret keys.

Test IDs: 1.3.6.1.4.1.25623.1.0.871767 1.3.6.1.4.1.25623.1.0.872455 1.3.6.1.4.1.25623.1.0.882670

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-2590
BugTraq ID: 96557
http://www.securityfocus.com/bid/96557
RedHat Security Advisories: RHSA-2017:0388
http://rhn.redhat.com/errata/RHSA-2017-0388.html

CVE ID:	CVE-2017-2590
Description:	A vulnerability was found in ipa before 4.4. IdM's ca-del, ca-disable, and ca-enable commands did not properly check the user's permissions while modifying CAs in Dogtag. An authenticated, unauthorized attacker could use this flaw to delete, disable, or enable CAs causing various denial of service problems with certificate issuance, OCSP signing, and deletion of secret keys.
Test IDs:	1.3.6.1.4.1.25623.1.0.871767 1.3.6.1.4.1.25623.1.0.872455 1.3.6.1.4.1.25623.1.0.882670
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-2590 BugTraq ID: 96557 http://www.securityfocus.com/bid/96557 RedHat Security Advisories: RHSA-2017:0388 http://rhn.redhat.com/errata/RHSA-2017-0388.html