CVE-2011-1594

Name of the Vulnerable Software and Affected Versions Spacewalk version 1.6

Description The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url bounce parameter. This can be exploited by including a malicious URL in the url bounce parameter, potentially leading to phishing attacks.

Recommendations For Spacewalk version 1.6, consider restricting access to the url bounce parameter to minimize the risk of exploitation. Avoid using the url bounce parameter in sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.