Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.4
CVSSv2

CVE-2011-4930

Published: 10/02/2014 Updated: 13/02/2023
CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4
VMScore: 392
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Condor

Vulnerability Summary

Multiple format string vulnerabilities in Condor 7.2.0 up to and including 7.6.4, and possibly certain 7.7.x versions, as used in Red Hat MRG Grid and possibly other products, allow local users to cause a denial of service (condor_schedd daemon and failure to launch jobs) and possibly execute arbitrary code via format string specifiers in (1) the reason for a hold for a job that uses an XML user log, (2) the filename of a file to be transferred, and possibly other unspecified vectors.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

condor project condor 7.6.1

condor project condor 7.2.3

fedoraproject fedora 16

condor project condor 7.5.4

condor project condor 7.6.3

condor project condor 7.6.0

condor project condor 7.3.2

condor project condor 7.2.1

condor project condor 7.2.0

condor project condor 7.4.1

condor project condor 7.3.0

condor project condor 7.4.2

condor project condor 7.2.2

condor project condor 7.6.4

condor project condor 7.6.2

fedoraproject fedora 15

condor project condor 7.2.5

condor project condor 7.4.0

condor project condor 7.3.1

condor project condor 7.2.4

redhat enterprise mrg 1.3

redhat enterprise mrg 2.0

Vendor Advisories

Red Hat: Moderate: MRG Grid security, bug fix, and enhancement update
Synopsis Moderate: MRG Grid security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic Updated Grid component packages that fix multiple security issues, multiplebugs, and add various enhancements are now available for Red Hat EnterpriseMRG 2 for Red Hat Enterprise Linux 6The ...
Red Hat: Moderate: MRG Grid security, bug fix, and enhancement update
Synopsis Moderate: MRG Grid security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic Updated Grid component packages that fix multiple security issues, multiplebugs, and add various enhancements are now available for Red Hat EnterpriseMRG 2 for Red Hat Enterprise Linux 5The ...

References

CWE-134http://rhn.redhat.com/errata/RHSA-2012-0100.htmlhttps://htcondor-wiki.cs.wisc.edu/index.cgi/chngview?cn=28264https://htcondor-wiki.cs.wisc.edu/index.cgi/tktview?tn=2660http://research.cs.wisc.edu/htcondor/security/vulnerabilities/CONDOR-2012-0001.htmlhttps://htcondor-wiki.cs.wisc.edu/index.cgi/chngview?cn=28429http://rhn.redhat.com/errata/RHSA-2012-0099.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=759548https://htcondor-git.cs.wisc.edu/?p=condor.git%3Ba=commitdiff%3Bh=5e5571d1a431eb3c61977b6dd6ec90186ef79867https://access.redhat.com/errata/RHSA-2012:0099https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook