Published: 25/08/2012 Updated: 13/02/2023

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Condor prior to 7.8.2 allows remote malicious users to bypass host-based authentication and execute actions such as ALLOW_ADMINISTRATOR or ALLOW_WRITE by connecting from a system with a spoofed reverse DNS hostname.

Vulnerable Product	Search on Vulmon	Subscribe to Product
condor project condor 7.1.4
condor project condor 6.8.1
condor project condor 7.2.3
condor project condor
condor project condor 7.1.3
condor project condor 6.8.4
condor project condor 7.1.0
condor project condor 7.1.1
condor project condor 7.0.0
condor project condor 7.3.2
condor project condor 7.02
condor project condor 7.01
condor project condor 7.2.1
condor project condor 7.2.0
condor project condor 7.4.1
condor project condor 7.3.0
condor project condor 6.8.9
condor project condor 6.8.0
condor project condor 7.0.6
condor project condor 6.8.6
condor project condor 7.00
condor project condor 6.8.7
condor project condor 6.8.3
condor project condor 7.0.5
condor project condor 7.2.2
condor project condor 7.0.1
condor project condor 7.8.0
condor project condor 6.5.4
condor project condor 7.0.2
condor project condor 7.4.0
condor project condor 7.3.1
condor project condor 7.03
condor project condor 7.0.3
condor project condor 7.1.2
condor project condor 6.8.5
condor project condor 6.8.8
condor project condor 7.0.4
condor project condor 6.8.2
condor project condor 7.2.4

Debian Bug report logs - #685366 condor: CVE-2012-3416 Package: condor; Maintainer for condor is HTCondor Developers <condor-debian@cswiscedu>; Source for condor is src:condor (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Mon, 20 Aug 2012 09:33:01 UTC Severity: grave Tags: security ...

Synopsis Important: condor security update Type/Severity Security Advisory: Important Topic Updated condor packages that fix one security issue are now available forRed Hat Enterprise MRG 21 for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as havingimportant security ...

Synopsis Important: condor security update Type/Severity Security Advisory: Important Topic Updated condor packages that fix one security issue are now available forRed Hat Enterprise MRG 21 for Red Hat Enterprise Linux 5The Red Hat Security Response Team has rated this update as havingimportant security ...

CWE-287 http://rhn.redhat.com/errata/RHSA-2012-1169.html http://secunia.com/advisories/50294 http://osvdb.org/84766 http://www.securityfocus.com/bid/55032 http://www.securitytracker.com/id?1027395 http://secunia.com/advisories/50246 http://research.cs.wisc.edu/condor/security/vulnerabilities/CONDOR-2012-0002.html http://rhn.redhat.com/errata/RHSA-2012-1168.html https://exchange.xforce.ibmcloud.com/vulnerabilities/77748 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685366 https://nvd.nist.gov

CVE-2012-3416

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect