Multiple OpenStack Products CVE-2013-1665 XML External Entity Information Disclosure Vulnerability

Multiple OpenStack products are prone to an information-disclosure vulnerability.

An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. The attacker may also exploit this issue to cause a denial of service of the affected system.

Note: The issue described by CVE-2013-1664 has been moved to BID 58892 (Multiple OpenStack Products CVE-2013-1664 Denial of Service Vulnerability) to better document it.


Privacy Statement
Copyright 2010, SecurityFocus