The filesystem authentication (condor_io/condor_auth_fs.cpp) in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 uses authentication directories even when they have weak permissions, which allows remote malicious users to impersonate users by renaming a user's authentication directory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
condor project condor 7.6.1 |
||
condor project condor 7.6.3 |
||
condor project condor 7.6.9 |
||
condor project condor 7.6.0 |
||
condor project condor 7.6.5 |
||
condor project condor 7.6.6 |
||
condor project condor 7.8.3 |
||
condor project condor 7.8.1 |
||
condor project condor 7.6.4 |
||
condor project condor 7.8.0 |
||
condor project condor 7.6.7 |
||
condor project condor 7.6.2 |
||
condor project condor 7.6.8 |
||
condor project condor 7.8.2 |