Computer Security
[EN] securityvulns.ru no-pyccku


Eucalyptus unauthorized access
Published:17.12.2010
Source:
SecurityVulns ID:11311
Type:remote
Threat Level:
5/10
Description:Old password is not verified during password reset in administration interface.
Affected:EUCALYPTUS : eucalyptus 2.0
CVE:CVE-2010-3905 (The password reset feature in the administrator interface for Eucalyptus 2.0.0 and 2.0.1 does not perform authentication, which allows remote attackers to gain privileges by sending password reset requests for other users.)
Original documentdocumentUBUNTU, [USN-1033-1] Eucalyptus vulnerability (17.12.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod