Insecure Directory Vulnerability in PackStack 2012.2.3

Insecure Directory Vulnerability in PackStack 2012.2.3

CVE-2013-1815 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory, which allows local users to modify deployed systems by changing this file.

Learn more about our User Device Pen Test.