Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-1069

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2013-1069
Last Modified 20 Feb 2014 09:14:01
Published 17 Feb 2014 11:55:08
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2013-1069

Summary

Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 uses world-readable permissions for txlongpoll.yaml, which allows local users to obtain RabbitMQ authentication credentials by reading the file.

Vulnerable Systems

Application

  • Ubuntu Metal As A Service 1.2

  • Ubuntu Metal As A Service 1.4


References

CONFIRM - https://bugs.launchpad.net/ubuntu/%2Bsource/maas/%2Bbug/1254034

UBUNTU - USN-2105-1


Last Updated: 27 May 2016 11:04:28