PT-2014-5718 · Openstack+1 · Openstack Neutron+1

Baodong Li

Publicado

2014-06-18

Atualizado

2018-10-22

CVE-2014-4167

CVSS v2.0

3.5

Baixa

Vetor

AV:N/AC:M/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions OpenStack Neutron versions before 2013.2.4 OpenStack Neutron versions 2014.x before 2014.1.2 OpenStack Neutron Juno before Juno-2

Description The issue allows remote authenticated users to cause a denial of service, specifically an IPv4 address attachment outage, by attaching an IPv6 private subnet to a L3 router.

Recommendations For OpenStack Neutron versions before 2013.2.4, update to version 2013.2.4 or later. For OpenStack Neutron versions 2014.x before 2014.1.2, update to version 2014.1.2 or later. For OpenStack Neutron Juno before Juno-2, update to Juno-2 or later.

Correção

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2014-4167

RHSA-2014:0899

USN-2255-1

Produtos afetados

Openstack Neutron

Ubuntu

PT-2014-5718 · Openstack+1 · Openstack Neutron+1

CVE-2014-4167

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 18