Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-3491HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-3491
2022-10-0316:15:24
Debian Security Bug Tracker
security-tracker.debian.org
5
condor
remote user
idle jobs
unauthorized access
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.007 Low
EPSS
Percentile
79.7%
src/condor_schedd.V6/schedd.cpp in Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 does not properly check the permissions of jobs, which allows remote authenticated users to remove arbitrary idle jobs via unspecified vectors.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | condor | < 7.8.2~dfsg.1-1+deb7u1 | condor_7.8.2~dfsg.1-1+deb7u1_all.deb |
Related
prion
prion
Code injection
2012-09-28 17:55:00
cvelist
cvelist
CVE-2012-3491
2022-10-03 16:15:24
ubuntucve
ubuntucve
CVE-2012-3491
2012-09-28 00:00:00
nvd
nvd
CVE-2012-3491
2012-09-28 17:55:01
cve
cve
CVE-2012-3491
2022-10-03 16:15:24
nessus
nessus
RHEL 6 : Red Hat Enterprise MRG Grid 2.2 (RHSA-2012:1281)
2014-07-22 00:00:00
RHEL 5 : MRG (RHSA-2012:1278)
2014-07-22 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-05-02 04:43:17
Unauthorised Removal Of Idle Jobs
2019-05-02 04:43:19
redhat
redhat
(RHSA-2012:1278) Moderate: Red Hat Enterprise MRG Grid 2.2 security update
2012-09-19 00:00:00
(RHSA-2012:1281) Moderate: Red Hat Enterprise MRG Grid 2.2 security update
2012-09-19 00:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.007 Low
EPSS
Percentile
79.7%
Related for DEBIANCVE:CVE-2012-3491