Описание
Apache CloudStack 4.0.0 before 4.0.2 and Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C allows remote attackers to bypass the console proxy authentication by leveraging knowledge of the source code.
Apache CloudStack 4.0.0 before 4.0.2 and Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C allows remote attackers to bypass the console proxy authentication by leveraging knowledge of the source code.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-2756
- https://exchange.xforce.ibmcloud.com/vulnerabilities/83781
- http://mail-archives.apache.org/mod_mbox/cloudstack-dev/201304.mbox/%3C51786984.1060300%40stratosec.co%3E
- http://mail-archives.apache.org/mod_mbox/cloudstack-dev/201304.mbox/%3C51786984.1060300@stratosec.co%3E
- http://osvdb.org/92748
- http://secunia.com/advisories/53175
- http://secunia.com/advisories/53204
- http://support.citrix.com/article/CTX135815
- http://www.securityfocus.com/bid/59463
- http://www.securitytracker.com/id/1028473
Связанные уязвимости
nvd
больше 11 лет назад
Apache CloudStack 4.0.0 before 4.0.2 and Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C allows remote attackers to bypass the console proxy authentication by leveraging knowledge of the source code.