A weakness has been reported in OpenStack Compute (Nova), which can be exploited by malicious users to bypass certain security restrictions.
The weakness is caused due to an error within the VNC console token validation mechanism. This can be exploited to reuse a valid unexpired token to connect to a different VM without proper authentication.
Successful exploitation requires usage of the same VNC port as the original connection.
The weakness is reported in versions Essex (2012.1) and Folsom (2012.2).
Solution: Fixed in the GIT repository for series Essex (2012.1) and Folsom (2012.2).
Provided and/or discovered by: The vendor credits Loganathan Parthipan (HP) and Rohit Karajgi (NTT Data).
Original Advisory: OSSA-2013-006:
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org