CVE Reference: CVE-2013-0212

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2013-0212

Description:
store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) before 2012.2.3, and Grizzly, when in Swift single tenant mode, logs the Swift endpoint's user name and password in cleartext when the endpoint is misconfigured or unusable, allows remote authenticated users to obtain sensitive information by reading the error messages.

CVE Status:
Candidate

References:

UBUNTU
  http://ubuntu.com/usn/usn-1710-1

SAID
  Secunia Advisory: SA51957
  Secunia Advisory: SA51990

REDHAT
  http://rhn.redhat.com/errata/RHSA-2013-0209.html

MLIST
  http://www.openwall.com/lists/oss-security/2013/01/29/10

MISC

CONFIRM


Return to the previous page.