Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-4930

Опубликовано: 10 фев. 2014
Источник: nvd
CVSS2: 4.4
EPSS Низкий

Описание

Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x versions, as used in Red Hat MRG Grid and possibly other products, allow local users to cause a denial of service (condor_schedd daemon and failure to launch jobs) and possibly execute arbitrary code via format string specifiers in (1) the reason for a hold for a job that uses an XML user log, (2) the filename of a file to be transferred, and possibly other unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:condor_project:condor:7.2.0:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.2.2:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.2.3:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.2.4:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.2.5:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.3.0:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.3.2:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.4.0:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.4.2:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.5.4:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.6.0:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.6.1:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.6.2:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.6.3:*:*:*:*:*:*:*
cpe:2.3:a:condor_project:condor:7.6.4:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_mrg:1.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_mrg:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 27%
0.00098
Низкий

4.4 Medium

CVSS2

Дефекты

CWE-134

Связанные уязвимости

ubuntu логотип

CVE-2011-4930

ubuntu
почти 12 лет назад

Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x versions, as used in Red Hat MRG Grid and possibly other products, allow local users to cause a denial of service (condor_schedd daemon and failure to launch jobs) and possibly execute arbitrary code via format string specifiers in (1) the reason for a hold for a job that uses an XML user log, (2) the filename of a file to be transferred, and possibly other unspecified vectors.

redhat логотип

CVE-2011-4930

redhat
около 14 лет назад

Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x versions, as used in Red Hat MRG Grid and possibly other products, allow local users to cause a denial of service (condor_schedd daemon and failure to launch jobs) and possibly execute arbitrary code via format string specifiers in (1) the reason for a hold for a job that uses an XML user log, (2) the filename of a file to be transferred, and possibly other unspecified vectors.

debian логотип

CVE-2011-4930

debian
почти 12 лет назад

Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, ...

github логотип

GHSA-xf2q-8pgg-943r

github
больше 3 лет назад

Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x versions, as used in Red Hat MRG Grid and possibly other products, allow local users to cause a denial of service (condor_schedd daemon and failure to launch jobs) and possibly execute arbitrary code via format string specifiers in (1) the reason for a hold for a job that uses an XML user log, (2) the filename of a file to be transferred, and possibly other unspecified vectors.

EPSS

Процентиль: 27%
0.00098
Низкий

4.4 Medium

CVSS2

Дефекты

CWE-134