CVE-2014-0136 Information

Description

The (1) get and (2) log methods in the AgentController in Red Hat CloudForms 3.0 Management Engine (CFME) 5.x allow remote attackers to insert arbitrary text into log files via unspecified vectors.

Reference

http://rhn.redhat.com/errata/RHSA-2014-1037.html http://www.securityfocus.com/bid/69233