Red Hat OpenShift Origin CVE-2012-5658 Password Information Disclosure Vulnerability
BID:58168
Info
Red Hat OpenShift Origin CVE-2012-5658 Password Information Disclosure Vulnerability
| Bugtraq ID: | 58168 |
| Class: | Unknown |
| CVE: |
CVE-2012-5658 |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 17 2012 12:00AM |
| Updated: | Dec 17 2012 12:00AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Redhat OpenShift Enterprise 0 |
| Not Vulnerable: |
Redhat OpenShift Enterprise 1.1 |
Discussion
Red Hat OpenShift Origin CVE-2012-5658 Password Information Disclosure Vulnerability
Red Hat OpenShift Origin is prone to an information-disclosure vulnerability.
Local attackers can exploit this issue to obtain passwords. This may aid in further attacks.
Red Hat OpenShift Origin is prone to an information-disclosure vulnerability.
Local attackers can exploit this issue to obtain passwords. This may aid in further attacks.
Exploit / POC
Red Hat OpenShift Origin CVE-2012-5658 Password Information Disclosure Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Red Hat OpenShift Origin CVE-2012-5658 Password Information Disclosure Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Red Hat OpenShift Origin CVE-2012-5658 Password Information Disclosure Vulnerability
References:
References:
- Red Hat OpenShift Origin HomePage (Red Hat)
- (CVE-2012-5658) CVE-2012-5658 OpenShift Origin: rhc-chk.rb password exposure in (Red Hat Bugzilla)
- Red Hat OpenShift Enterprise 1.1 update (Red Hat)