OpenStack Keystone Token Validation Multiple Security Bypass Vulnerabilities

Bugtraq ID: 55716
Class: Design Error
CVE: CVE-2012-4456
CVE-2012-4457
Remote: Yes
Local: No
Published: Sep 28 2012 12:00AM
Updated: Apr 13 2015 10:01PM
Credit: Jason Xu
Vulnerable: Redhat OpenStack Essex 0
OpenStack Keystone 2012.1.1
OpenStack Keystone 2012.1
OpenStack Keystone 2012.1.3
OpenStack Keystone 2012.1.2
OpenStack Keystone 2012.1.1-5
Not Vulnerable: OpenStack Keystone 2012.2


 

Privacy Statement
Copyright 2010, SecurityFocus