resmom/start_exec.c in pbs_mom in TORQUE Resource Manager 2.0.0p8 and previous versions allows local users to create arbitrary files via a symlink attack on (1) a job output file in /usr/spool/PBS/spool and possibly (2) a job file in /usr/spool/PBS/mom_priv/jobs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cluster resources torque resource manager |