CVE-2012-3540

Priority
Medium
Description
Open redirect vulnerability in views/auth_forms.py in OpenStack Dashboard
(Horizon) Essex (2012.1) allows remote attackers to redirect users to
arbitrary web sites and conduct phishing attacks via a URL in the next
parameter to auth/login/. NOTE: this issue was originally assigned
CVE-2012-3542 by mistake.
References
Bugs
Package
Upstream:released (2012.1.1-5)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (2012.2~f3-0ubuntu2)
More Information

Updated: 2017-12-15 20:30:00 UTC (commit 13913)