CVE-2012-3241 - Smutty Attraction

Description

The VMware Broker in Eucalyptus 2.0.3 and 3.0.x before 3.0.2 does not properly authenticate SOAP requests which allows remote attackers to execute arbitrary VMware Broker API commands.

Reference

http://secunia.com/advisories/49916 http://secunia.com/advisories/49912 http://www.eucalyptus.com/eucalyptus-cloud/security/esa-04