← voltar
CVE-2014-2573

CVE-2014-2573

EPSS 0.7%
The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denial of service (resource consumption) by requesting the VM be put into rescue and then deleting the image.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugs.launchpad.net/nova/+bug/1269418http://secunia.com/advisories/57498http://www.openwall.com/lists/oss-security/2014/03/21/1http://www.openwall.com/lists/oss-security/2014/03/21/2