Lucene search
HistoryJun 06, 2014 - 2:55 p.m.
CVE-2012-5390
cve-2012-5390
condor
remote attack
privilege escalation
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.9%
The standard universe shadow (condor_shadow.std) component in Condor 7.7.3 through 7.7.6, 7.8.0 before 7.8.5, and 7.9.0 does no properly check privileges, which allows remote attackers to gain privileges via a crafted standard universe job.
Affected configurations
Node
condor_projectcondorMatch7.9.0
Node
condor_projectcondorMatch7.8.0
ORcondor_projectcondorMatch7.8.1
ORcondor_projectcondorMatch7.8.2
ORcondor_projectcondorMatch7.8.3
ORcondor_projectcondorMatch7.8.4
Node
condor_projectcondorMatch7.7.3
ORcondor_projectcondorMatch7.7.4
ORcondor_projectcondorMatch7.7.5
ORcondor_projectcondorMatch7.7.6
| CPE | Name | Operator | Version |
|---|---|---|---|
| condor_project:condor | condor project condor | eq | 7.9.0 |
Related
cvelist
cvelist
CVE-2012-5390
2014-06-06 14:00:00
debiancve
debiancve
CVE-2012-5390
2014-06-06 14:55:03
nvd
nvd
CVE-2012-5390
2014-06-06 14:55:03
ubuntucve
ubuntucve
CVE-2012-5390
2014-06-06 00:00:00
prion
prion
Code injection
2014-06-06 14:55:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.9%
Related for CVE-2012-5390