Lucene search
CanonicalCVELIST:CVE-2011-0730HistoryJun 02, 2011 - 7:00 p.m.
CVE-2011-0730
2011-06-0219:00:00
canonical
www.cve.org
Eucalyptus before 2.0.3 and Eucalyptus EE before 2.0.2, as used in Ubuntu Enterprise Cloud (UEC) and other products, do not properly interpret signed elements in SOAP requests, which allows man-in-the-middle attackers to execute arbitrary commands by modifying a request, related to an “XML Signature Element Wrapping” or a “SOAP signature replay” issue.
References
launchpadlibrarian.net/72472626/eucalyptus_2.0.1%2Bbzr1256-0ubuntu5_2.0.1%2Bbzr1256-0ubuntu6.diff.gz
open.eucalyptus.com/wiki/esa-02
secunia.com/advisories/44705
www.securityfocus.com/bid/48000
www.ubuntu.com/usn/USN-1137-1
bugs.launchpad.net/bugs/746101
exchange.xforce.ibmcloud.com/vulnerabilities/67670
launchpad.net/ubuntu/+source/eucalyptus/+changelog
Related
ubuntucve
ubuntucve
CVE-2011-0730
2011-05-25 00:00:00
CVE-2011-2329
2011-05-26 00:00:00
openvas
openvas
Ubuntu Update for eucalyptus USN-1137-1
2011-06-03 00:00:00
Ubuntu: Security Advisory (USN-1137-1)
2011-06-03 00:00:00
ubuntu
ubuntu
Eucalyptus vulnerability
2011-05-26 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2011-05-26 00:00:00
[USN-1137-1] Eucalyptus vulnerability
2011-05-26 00:00:00
prion
prion
Cross site request forgery (csrf)
2011-06-02 19:55:00
Design/Logic Flaw
2011-06-02 20:55:00
cve
cve
CVE-2011-0730
2011-06-02 19:55:03
CVE-2011-2329
2011-06-02 20:55:04
nvd
nvd
CVE-2011-0730
2011-06-02 19:55:03
CVE-2011-2329
2011-06-02 20:55:04
nessus
nessus
cvelist
cvelist
CVE-2011-2329
2011-06-02 20:00:00