The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 allows remote malicious users to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port, which leaks the ClaimId.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
condor project condor 7.6.1 |
||
condor project condor 7.6.3 |
||
condor project condor 7.6.9 |
||
condor project condor 7.6.0 |
||
condor project condor 7.6.5 |
||
condor project condor 7.6.6 |
||
condor project condor 7.8.3 |
||
condor project condor 7.8.1 |
||
condor project condor 7.6.4 |
||
condor project condor 7.8.0 |
||
condor project condor 7.6.7 |
||
condor project condor 7.6.2 |
||
condor project condor 7.6.8 |
||
condor project condor 7.8.2 |