mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
971 B
971 B
CVE-2015-1842
Description
The puppet manifests in the Red Hat openstack-puppet-modules package before 2014.2.13-2 uses a default password of CHANGEME for the pcsd daemon, which allows remote attackers to execute arbitrary shell commands via unspecified vectors.
POC
Reference
- http://rhn.redhat.com/errata/RHSA-2015-0789.html
- http://rhn.redhat.com/errata/RHSA-2015-0831.html
- http://rhn.redhat.com/errata/RHSA-2015-0832.html
- https://access.redhat.com/errata/RHSA-2015:0789
- https://access.redhat.com/errata/RHSA-2015:0831
- https://access.redhat.com/errata/RHSA-2015:0832
Github
No PoCs found on GitHub currently.