Red Hat Bugzilla – Bug 882000
CVE-2012-6149 Satellite, Spacewalk (spacewalk-java): XSS in system.addNote XML-RPC call due improper sanitization of note's subject and content
Last modified: 2016-03-04 06:06:29 EST
A cross-site scripting (XSS) flaw was found in the way the web interface of Red Hat Network Satellite / Spacewalk performed sanitization of note's subject and note's content values, for a note being added after system.addNote() XML-RPC request. A remote authenticated Red Hat Network Satellite / Spacewalk user (having systems registered to particular Red Hat Network Satellite / Spacewalk instance) could use this flaw to execute arbitrary HTML or web script, via specially-crafted XML-RPC request, in the context of the session of Red Hat Network Satellite / Spacewalk administrator, if they visited the page, created as a result of that XML-RPC call.
Red Hat would like to thank Ben Ford of Puppet Labs for reporting this issue.
This issue has been addressed in following products:
Red Hat Satellite Server v 5.6
Via RHSA-2014:0148 https://rhn.redhat.com/errata/RHSA-2014-0148.html