Описание
The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port, which leaks the ClaimId.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 7.8.2~dfsg.1-1+deb7u1 |
| hardy | DNE | |
| lucid | ignored | end of life |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| precise | DNE | |
| quantal | not-affected | 7.8.2~dfsg.1-1+deb7u1 |
| raring | not-affected | 7.8.2~dfsg.1-1+deb7u1 |
| saucy | not-affected | 7.8.2~dfsg.1-1+deb7u1 |
| upstream | needs-triage |
Показывать по
EPSS
5.8 Medium
CVSS2
Связанные уязвимости
The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port, which leaks the ClaimId.
The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port, which leaks the ClaimId.
The command_give_request_ad function in condor_startd.V6/command.cpp C ...
The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port, which leaks the ClaimId.
EPSS
5.8 Medium
CVSS2