CVE-2008-3830
First published: Wed Oct 08 2008(Updated: )
Condor before 7.0.5 does not properly handle when the configuration specifies overlapping netmasks in allow or deny rules, which causes the rule to be ignored and allows attackers to bypass intended access restrictions.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| wisc HTCondor | <=7.0.4 | |
| wisc HTCondor | =6.8.0 | |
| wisc HTCondor | =6.8.1 | |
| wisc HTCondor | =6.8.2 | |
| wisc HTCondor | =6.8.3 | |
| wisc HTCondor | =6.8.4 | |
| wisc HTCondor | =6.8.5 | |
| wisc HTCondor | =6.8.6 | |
| wisc HTCondor | =6.8.7 | |
| wisc HTCondor | =6.8.8 | |
| wisc HTCondor | =6.8.9 | |
| wisc HTCondor | =7.0.0 | |
| wisc HTCondor | =7.0.1 | |
| wisc HTCondor | =7.0.2 | |
| wisc HTCondor | =7.0.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/32193
- http://www.securityfocus.com/bid/31621
- http://www.cs.wisc.edu/condor/manual/v7.0/8_3Stable_Release.html#SECTION00931000000000000000
- http://www.securitytracker.com/id?1021002
- http://www.redhat.com/support/errata/RHSA-2008-0924.html
- http://www.redhat.com/support/errata/RHSA-2008-0911.html
- http://secunia.com/advisories/32189
- http://secunia.com/advisories/32232
- https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00264.html
- http://www.vupen.com/english/advisories/2008/2760
- agent/references
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/condor project
- canonical/wisc htcondor
- version/wisc htcondor/7.0.4
- version/wisc htcondor/6.8.0
- version/wisc htcondor/6.8.1
- version/wisc htcondor/6.8.2
- version/wisc htcondor/6.8.3
- version/wisc htcondor/6.8.4
- version/wisc htcondor/6.8.5
- version/wisc htcondor/6.8.6
- version/wisc htcondor/6.8.7
- version/wisc htcondor/6.8.8
- version/wisc htcondor/6.8.9
- version/wisc htcondor/7.0.0
- version/wisc htcondor/7.0.1
- version/wisc htcondor/7.0.2
- version/wisc htcondor/7.0.3