CVE-2012-3540

Priority
Medium
Description
Open redirect vulnerability in views/auth_forms.py in OpenStack Dashboard
(Horizon) Essex (2012.1) allows remote attackers to redirect users to
arbitrary web sites and conduct phishing attacks via a URL in the next
parameter to auth/login/. NOTE: this issue was originally assigned
CVE-2012-3542 by mistake.
References
Bugs
Package
Upstream:released (2012.1.1-5)
Ubuntu 12.04 LTS (Precise Pangolin):released (2012.1.3+stable~20120815-691dd2-0ubuntu1.1)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:40:51 UTC (commit 9756)