CVE-2012-3540

Priority
Medium
Description
Open redirect vulnerability in views/auth_forms.py in OpenStack Dashboard
(Horizon) Essex (2012.1) allows remote attackers to redirect users to
arbitrary web sites and conduct phishing attacks via a URL in the next
parameter to auth/login/. NOTE: this issue was originally assigned
CVE-2012-3542 by mistake.
References
Bugs
Package
Upstream:released (2012.1.1-5)
Ubuntu 12.04 LTS (Precise Pangolin):released (2012.1.3+stable~20120815-691dd2-0ubuntu1.1)
More Information

Updated: 2016-03-23 03:39:39 UTC (commit 10817)