Vulnerability in Eucalyptus
CVE-2013-4769
The cloud controller (aka CLC) component in Eucalyptus 3.3.x and 3.4.x before 3.4.2, when the dns.recursive.enabled setting is used, allows remote attackers to cause a denial of service (traffic amplification) via spoofed DNS queries.
EPSS: 0.012 (63.1th percentile) — read the EPSS interpretation.
Affected products
- Eucalyptus — versions 3.3.0, 3.3.1, 3.3.2
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)