The standard universe shadow (condor_shadow.std) component in Condor 7.7.3 up to and including 7.7.6, 7.8.0 prior to 7.8.5, and 7.9.0 does no properly check privileges, which allows remote malicious users to gain privileges via a crafted standard universe job.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
condor project condor 7.9.0 |
||
condor project condor 7.8.0 |
||
condor project condor 7.8.2 |
||
condor project condor 7.8.4 |
||
condor project condor 7.8.1 |
||
condor project condor 7.8.3 |
||
condor project condor 7.7.3 |
||
condor project condor 7.7.4 |
||
condor project condor 7.7.5 |
||
condor project condor 7.7.6 |