CVE-2014-7807 Information

Description

Apache CloudStack 4.3.x before 4.3.2 and 4.4.x before 4.4.2 allows remote attackers to bypass authentication via a login request without a password which triggers an unauthenticated bind.

Reference

http://support.citrix.com/article/CTX200285 http://www.securityfocus.com/archive/1/534176/100/0/threaded