OpenStack Nova Image Registration Arbitrary Input Validation Vulnerability
BID:51047
Info
OpenStack Nova Image Registration Arbitrary Input Validation Vulnerability
| Bugtraq ID: | 51047 |
| Class: | Input Validation Error |
| CVE: |
CVE-2011-4596 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 13 2011 12:00AM |
| Updated: | Apr 13 2015 08:21PM |
| Credit: | David Black |
| Vulnerable: |
Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 OpenStack Nova 0 |
| Not Vulnerable: | |
Discussion
OpenStack Nova Image Registration Arbitrary Input Validation Vulnerability
Nova is prone to an input validation vulnerability that lets attackers overwrite arbitrary files.
Successful exploits may allow attackers to compromise the system in the context of the user running the vulnerable application; other attacks are also possible.
Nova is prone to an input validation vulnerability that lets attackers overwrite arbitrary files.
Successful exploits may allow attackers to compromise the system in the context of the user running the vulnerable application; other attacks are also possible.
Exploit / POC
OpenStack Nova Image Registration Arbitrary Input Validation Vulnerability
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Solution / Fix
OpenStack Nova Image Registration Arbitrary Input Validation Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
OpenStack Nova Image Registration Arbitrary Input Validation Vulnerability
References:
References: