Unrated severityNVD Advisory· Published Jun 2, 2011· Updated Apr 29, 2026
CVE-2011-0730
CVE-2011-0730
Description
Eucalyptus before 2.0.3 and Eucalyptus EE before 2.0.2, as used in Ubuntu Enterprise Cloud (UEC) and other products, do not properly interpret signed elements in SOAP requests, which allows man-in-the-middle attackers to execute arbitrary commands by modifying a request, related to an "XML Signature Element Wrapping" or a "SOAP signature replay" issue.
Affected products
5cpe:2.3:a:eucalyptus:eucalyptus:*:*:*:*:enterprise:*:*:*+ 1 more
- cpe:2.3:a:eucalyptus:eucalyptus:*:*:*:*:enterprise:*:*:*range: <2.0.2
- cpe:2.3:a:eucalyptus:eucalyptus:*:*:*:*:*:*:*:*range: <2.0.3
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- launchpadlibrarian.net/72472626/eucalyptus_2.0.1%2Bbzr1256-0ubuntu5_2.0.1%2Bbzr1256-0ubuntu6.diff.gznvdPatchThird Party Advisory
- launchpad.net/ubuntu/+source/eucalyptus/+changelognvdPatchThird Party Advisory
- open.eucalyptus.com/wiki/esa-02nvdVendor Advisory
- secunia.com/advisories/44705nvdThird Party Advisory
- www.securityfocus.com/bid/48000nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-1137-1nvdThird Party Advisory
- bugs.launchpad.net/bugs/746101nvdThird Party Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/67670nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.