CVE-2012-3241
Published: 17 July 2012
The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not properly authenticate SOAP requests, which allows remote attackers to execute arbitrary VMware Broker API commands.
Notes
Author | Note |
---|---|
sbeattie | based on code inspection, it does not look like we ship the VMWare Broker in our eucalyptus packages |
Priority
Status
Package | Release | Status |
---|---|---|
eucalyptus Launchpad, Ubuntu, Debian |
hardy |
Does not exist
|
lucid |
Not vulnerable
(code not present)
|
|
natty |
Not vulnerable
(code not present)
|
|
oneiric |
Not vulnerable
(code not present)
|
|
precise |
Not vulnerable
(3.1.0+deps-0precise1)
|
|
upstream |
Needs triage
|