Red Hat Security Advisory 2016-2839-01

Discussion in 'News Aggregator' started by Packet Storm, 1 Dec 2016.

  1. Packet Storm

    Packet Storm Guest

    Red Hat Security Advisory 2016-2839-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web application development. Action Pack implements the controller and the view components. Security Fix: A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.

    Continue reading...
     
    #1 Packet Storm, 1 Dec 2016
(You must log in or sign up to post here.)

Share This Page

Loading...