CVE-2008-2233

Name of the Vulnerable Software and Affected Versions openwsman versions 1.2.0 through 2.0.0 openwsman-client (affected versions not specified) openwsman-server (affected versions not specified) openwsman-devel (affected versions not specified) libwsman1 (affected versions not specified) libwsman-devel (affected versions not specified) openwsman-debugsource (affected versions not specified) openwsman-ruby (affected versions not specified) openwsman-python (affected versions not specified) openwsman-debuginfo (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the openwsman package of the openSUSE operating system, which can lead to breaches of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. The client in Openwsman, in unknown configurations, allows remote Openwsman servers to replay SSL sessions via unspecified vectors.

Recommendations For openwsman versions 1.2.0 through 2.0.0, update to a version outside of this range to mitigate the risk. For openwsman-client, consider disabling the client functionality until a patch is available. For openwsman-server, restrict access to the server to minimize the risk of exploitation. For openwsman-devel, libwsman1, libwsman-devel, openwsman-debugsource, openwsman-ruby, openwsman-python, and openwsman-debuginfo, at the moment, there is no information about a newer version that contains a fix for this vulnerability.