CVE-2012-6118 - OpenCVE

The Administer tab in Aeolus Conductor allows remote authenticated users to bypass intended quota restrictions by updating the Maximum Running Instances quota user setting.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:S/C:N/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Redhat	Aeolus Conductor

Configuration 1 [-]

cpe:2.3:a:redhat:aeolus_conductor:-:*:*:*:*:*:*:*

References

Link	Resource
http://rhn.redhat.com/errata/RHSA-2013-0545.html	Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=906192	Exploit

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2013-03-12T21:00:00Z

Updated: 2013-03-12T21:00:00Z

Reserved: 2012-12-06T00:00:00Z

Link: CVE-2012-6118

JSON object: View

NVD Information

Status : Analyzed

Published: 2013-03-12T22:55:01.670

Modified: 2013-03-18T04:00:00.000

Link: CVE-2012-6118

JSON object: View

Redhat Information

No data.

CWE

CWE-264