Vulnerability in Eucalyptus

CVE-2012-4067

Walrus in Eucalyptus before 3.2.2 allows remote attackers to cause a denial of service (memory, thread, and CPU consumption) via a crafted XML message containing a DTD, as demonstrated by a bucket-logging request.

EPSS: 0.016 (73.2th percentile) — read the EPSS interpretation.

Affected products

  • Eucalyptus — versions 1.0, 1.1, 1.2
  • N/a — versions n/a

Weakness classification (CWE)

References