Candidate: CVE-2012-4065
PublicDate: 2012-10-01 23:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4065
 http://www.eucalyptus.com/eucalyptus-cloud/security/esa-07
Description:
 Eucalyptus before 3.1.1 does not properly restrict the binding of external
 SOAP web-services messages, which allows remote authenticated users to
 bypass unspecified authorization checks and obtain direct access to a (1)
 Cloud Controller or (2) Walrus service via a crafted message, as
 demonstrated by changes to a volume, snapshot, or cloud configuration
 setting.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_eucalyptus:
upstream_eucalyptus: released (3.1.1)
hardy_eucalyptus: DNE
lucid_eucalyptus: ignored (reached end-of-life)
natty_eucalyptus: ignored (reached end-of-life)
oneiric_eucalyptus: ignored (reached end-of-life)
precise_eucalyptus: ignored (reached end-of-life)
precise/esm_eucalyptus: DNE (precise was needed)
quantal_eucalyptus: DNE
raring_eucalyptus: DNE
saucy_eucalyptus: DNE
trusty_eucalyptus: DNE
trusty/esm_eucalyptus: DNE
utopic_eucalyptus: DNE
vivid_eucalyptus: DNE
vivid/stable-phone-overlay_eucalyptus: DNE
vivid/ubuntu-core_eucalyptus: DNE
wily_eucalyptus: DNE
xenial_eucalyptus: DNE
yakkety_eucalyptus: DNE
zesty_eucalyptus: DNE
devel_eucalyptus: DNE