IBM Security Bulletin: IBM SmartCloud Orchestrator - Keystone DoS through V3 API authentication chaining (CVE-2014-2828)
By sending a single request with the same authentication method multiple times, a remote attacker may generate unwanted load on the Keystone host, potentially resulting in a Denial of Service against a Keystone service. Only Keystone setups enabling V3 API are...
from IBM Product Security Incident Response Team http://ibm.co/1sfCaNe
from IBM Product Security Incident Response Team http://ibm.co/1sfCaNe