Libcloud CVE-2010-4340 Security Bypass Vulnerability

info
discussion
exploit
solution
references

Libcloud CVE-2010-4340 Security Bypass Vulnerability

References:

[LIBCLOUD-55] this python project is vulnerable to MITM as it fails to verify th (CONFIRM)
http://mail-archives.apache.org/mod_mbox/incubator-libcloud/201009.mbox/%3C58609 (MLIST)
http://mail-archives.apache.org/mod_mbox/incubator-libcloud/201011.mbox/browser (MLIST)
LibcloudSSL - Incubator Wiki (MISC)
python-libcloud: libcloud https connections are not secured against mitm attacks (Soren Hansen)

Privacy Statement
Copyright 2010, SecurityFocus