6.5

CVE-2009-4133

Condor 6.5.4 through 7.2.4, 7.3.x, and 7.4.0, as used in MRG, Grid for MRG, and Grid Execute Node for MRG, allows remote authenticated users to queue jobs as an arbitrary user, and thereby gain privileges, by using a Condor command-line tool to modify an unspecified job attribute.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Condor ProjectCondor Version6.5.4
Condor ProjectCondor Version6.8.0
Condor ProjectCondor Version6.8.1
Condor ProjectCondor Version6.8.2
Condor ProjectCondor Version6.8.3
Condor ProjectCondor Version6.8.4
Condor ProjectCondor Version6.8.5
Condor ProjectCondor Version6.8.6
Condor ProjectCondor Version6.8.7
Condor ProjectCondor Version6.8.8
Condor ProjectCondor Version6.8.9
Condor ProjectCondor Version7.0.0
Condor ProjectCondor Version7.0.1
Condor ProjectCondor Version7.0.2
Condor ProjectCondor Version7.0.3
Condor ProjectCondor Version7.0.4
Condor ProjectCondor Version7.0.5
Condor ProjectCondor Version7.0.6
Condor ProjectCondor Version7.1.0
Condor ProjectCondor Version7.1.1
Condor ProjectCondor Version7.1.2
Condor ProjectCondor Version7.1.3
Condor ProjectCondor Version7.1.4
Condor ProjectCondor Version7.2.0
Condor ProjectCondor Version7.2.1
Condor ProjectCondor Version7.2.2
Condor ProjectCondor Version7.2.3
Condor ProjectCondor Version7.2.4
Condor ProjectCondor Version7.3.0
Condor ProjectCondor Version7.3.1
Condor ProjectCondor Version7.3.2
Condor ProjectCondor Version7.4.0
RedhatEnterprise Mrg Version1.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.08% 0.79
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://condor-wiki.cs.wisc.edu/index.cgi/tktview?tn=1018
http://secunia.com/advisories/37766
Vendor Advisory
http://secunia.com/advisories/37803
Vendor Advisory
http://securitytracker.com/id?1023378
http://www.cs.wisc.edu/condor/manual/v7.4/8_3Stable_Release.html#SECTION00931000000000000000
Vendor Advisory
http://www.cs.wisc.edu/condor/security/vulnerabilities/CONDOR-2009-0001.html
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2009-1688.html
http://www.redhat.com/support/errata/RHSA-2009-1689.html
http://www.securityfocus.com/bid/37443
https://bugzilla.redhat.com/show_bug.cgi?id=544371
https://exchange.xforce.ibmcloud.com/vulnerabilities/54984