CVE-2013-1815 Information

Description

PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory which allows local users to modify deployed systems by changing this file.

Reference

http://rhn.redhat.com/errata/RHSA-2013-0671.html https://bugzilla.redhat.com/show_bug.cgi?id=917904 https://exchange.xforce.ibmcloud.com/vulnerabilities/83017