OpenStack Glance '/var/log/glance' Insecure File Permissions Vulnerability

OpenStack Glance is prone to an insecure file-permission vulnerability.

A local attacker can exploit this issue by gaining access to a world-readable log file and extracting sensitive information from it. Such information could aid in other attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus