Lucene search

K

RedhatCVELIST:CVE-2009-4133

HistoryDec 23, 2009 - 6:00 p.m.

CVE-2009-4133

2009-12-2318:00:00

redhat

www.cve.org

6.3 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.9%

Condor 6.5.4 through 7.2.4, 7.3.x, and 7.4.0, as used in MRG, Grid for MRG, and Grid Execute Node for MRG, allows remote authenticated users to queue jobs as an arbitrary user, and thereby gain privileges, by using a Condor command-line tool to modify an unspecified job attribute.

References

condor-wiki.cs.wisc.edu/index.cgi/tktview?tn=1018

secunia.com/advisories/37766

secunia.com/advisories/37803

securitytracker.com/id?1023378

www.cs.wisc.edu/condor/manual/v7.4/8_3Stable_Release.html#SECTION00931000000000000000

www.cs.wisc.edu/condor/security/vulnerabilities/CONDOR-2009-0001.html

www.redhat.com/support/errata/RHSA-2009-1688.html

www.redhat.com/support/errata/RHSA-2009-1689.html

www.securityfocus.com/bid/37443

bugzilla.redhat.com/show_bug.cgi?id=544371

exchange.xforce.ibmcloud.com/vulnerabilities/54984

6.3 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.9%

Related for CVELIST:CVE-2009-4133

cve1 openvas8 fedora2 nessus2 debiancve1 prion1 seebug1 redhat1 ubuntucve1 veracode1 nvd1