CVE-2013-0335

2013-03-22T21:55:00
ID CVE-2013-0335
Type cve
Reporter cve@mitre.org
Modified 2013-06-05T03:40:00

Description

OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM that was bound to the same VNC port. Per http://www.ubuntu.com/usn/USN-1771-1/ "A security issue affects these releases of Ubuntu and its derivatives:

Ubuntu 12.10 Ubuntu 12.04 LTS Ubuntu 11.10"