CVE-2012-3447

virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x before 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3361.

Published Bysecalert@redhat.com

Published DateAug 20, 2012, 18:55

Affected Versions(1)

nova(PyPI)

Introduced0

Fixed12.0.0

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
nova(PyPI)	0	12.0.0	N/A

Weakness Type (CWE):CWE-264

CVSS Metrics

Base Score

4.9

Vector String

AV:N/AC:M/Au:S/C:N/I:P/A:P

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

NONE

Integrity (I)

PARTIAL

Availability (A)

PARTIAL

References

Weakness Type (CWE):CWE-264

CVSS Metrics

Base Score

4.9

Vector String

AV:N/AC:M/Au:S/C:N/I:P/A:P

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

NONE

Integrity (I)

PARTIAL

Availability (A)

PARTIAL