keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing certificates, which allows local users to spoof servers by pre-creating this directory, which is reused by Nova, as demonstrated using /tmp/keystone-signing-nova on Fedora.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openstack compute 2013.1.2 |
||
openstack compute 2013.1.3 |
||
openstack havana havana-1 |
||
openstack havana havana-2 |
||
openstack havana havana-3 |
||
openstack grizzly 2013.1 |
||
openstack compute 2013.1 |
||
openstack compute 2013.1.1 |
||
openstack folsom - |