CVE-2012-4462

Published: Mar 14, 2013Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

aviary/jobcontrol.py in Condor, as used in Red Hat Enterprise MRG 2.3, when removing a job, allows remote attackers to cause a denial of service (condor_schedd restart) via square brackets in the cproc option.

Affected (2)

Products: Condor Project: Condor · Redhat: Enterprise Mrg

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Condor Project Condor	Version 7.8.0
Redhat Enterprise Mrg	Version 2.3

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (8)

http://rhn.redhat.com/errata/RHSA-2013-0564.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2013-0565.html

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=860850

Source: secalert@redhat.com

https://htcondor-git.cs.wisc.edu/?p=condor.git%3Ba=commitdiff%3Bh=8f9b304c4f6c0a98dafa61b2c0e4beb3b70e4c84

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2013-0564.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2013-0565.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=860850

Source: af854a3a-2127-422b-91ae-364da2661108

https://htcondor-git.cs.wisc.edu/?p=condor.git%3Ba=commitdiff%3Bh=8f9b304c4f6c0a98dafa61b2c0e4beb3b70e4c84

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.