OpenStack Security Advisory: 2012-012
Date: August 30, 2012
Title: Open redirect through ‘next’ parameter
Reporter: Thomas Biege (SUSE)
Affects: Essex (2012.1)
Thomas Biege from SUSE reported a vulnerability in Horizon
authentication mechanism. By adding a malicious ‘next’ parameter to a
Horizon authentication URL and enticing an unsuspecting user to follow
it, the victim might get redirected after authentication to a
malicious site where useful information could be extracted. Only
setups running Essex are affected.
This fix will be included in a future Essex (2012.1) release.