OpenStack Keystone EC2-style Tokens Validation Privilage Escalation Vulnerability

Bugtraq ID: 64253
Class: Design Error
CVE: CVE-2013-6391
Remote: Yes
Local: No
Published: Dec 11 2013 12:00AM
Updated: Apr 13 2015 10:24PM
Credit: Steven Hardy of Red Hat
Vulnerable: Ubuntu Ubuntu Linux 13.10
Redhat OpenStack 4.0
Redhat OpenStack 3.0
OpenStack Keystone 2013.2.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus