Candidate: CVE-2012-3241
PublicDate: 2012-07-17 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3241
 http://www.eucalyptus.com/eucalyptus-cloud/security/esa-04
 http://secunia.com/advisories/49916
 http://secunia.com/advisories/49912
Description:
 The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not
 properly authenticate SOAP requests, which allows remote attackers to
 execute arbitrary VMware Broker API commands.
Ubuntu-Description:
Notes:
 sbeattie> based on code inspection, it does not look like we ship the
   VMWare Broker in our eucalyptus packages
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_eucalyptus:
upstream_eucalyptus: needs-triage
hardy_eucalyptus: DNE
lucid_eucalyptus: not-affected (code not present)
natty_eucalyptus: not-affected (code not present)
oneiric_eucalyptus: not-affected (code not present)
precise_eucalyptus: not-affected (3.1.0+deps-0precise1)
devel_eucalyptus: DNE