CVE-2011-0730

by Fred · 02/06/2011

Eucalyptus before 2.0.3 and Eucalyptus EE before 2.0.2, as used in Ubuntu Enterprise Cloud (UEC) and other products, do not properly interpret signed elements in SOAP requests, which allows man-in-the-middle attackers to execute arbitrary commands by modifying a request, related to an "XML Signature Element Wrapping" or a "SOAP signature replay" issue.

Date published : 2011-06-02

http://www.securityfocus.com/bid/48000

http://launchpadlibrarian.net/72472626/eucalyptus_2.0.1%2Bbzr1256-0ubuntu5_2.0.1%2Bbzr1256-0ubuntu6.diff.gz

CVE-2011-0730

Related

Recent Posts

Categories

Latest CWE

CVE-2011-0730

Share this:

Related

Recent Posts

Categories

Tags

Latest CWE