Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The cloud controller (aka CLC) component in Eucalyptus 3.3.x and 3.4.x before 3.4.2, when the dns.recursive.enabled setting is used, allows remote attackers to cause a denial of service (traffic amplification) via spoofed DNS queries.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Eucalyptus cloud controller组件安全漏洞
Vulnerability Description
Eucalyptus是美国加利福尼亚大学Santa Barbara计算机科学院的一个研究项目,它是一个用于实现云计算的开源软件基础设施,也是Amazon EC2(亚马逊弹性计算云)的一个开源实现。cloud controller(又名CLC)是其中的一个云控制器组件。 Eucalyptus 3.3.x版本和3.4.2之前3.4.x版本的cloud controller组件中存在安全漏洞。当程序使用dns.recursive.enabled设置时,远程攻击者可借助伪造的DNS查询利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A