The standard universe shadow (condor_shadow.std) component in Condor 7.7.3 through 7.7.6, 7.8.0 before 7.8.5, and 7.9.0 does no properly check privileges, which allows remote attackers to gain privileges via a crafted standard universe job.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2014-06-06 07:55
Updated : 2014-06-09 06:18
NVD link : CVE-2012-5390
Mitre link : CVE-2012-5390
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
condor_project
- condor