Privilege Escalation via Crafted Configuration File in Red Hat openstack-neutron Package

CVE-2013-6433 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:C

The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file.

Learn more about our Web Application Penetration Testing UK.