CVE-2012-5390

The standard universe shadow (condor_shadow.std) component in Condor 7.7.3 through 7.7.6, 7.8.0 before 7.8.5, and 7.9.0 does no properly check privileges, which allows remote attackers to gain privileges via a crafted standard universe job.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 82%
VendorProductVersion
condor_projectcondor
7.9.0
condor_projectcondor
7.8.0
condor_projectcondor
7.8.1
condor_projectcondor
7.8.2
condor_projectcondor
7.8.3
condor_projectcondor
7.8.4
condor_projectcondor
7.7.3
condor_projectcondor
7.7.4
condor_projectcondor
7.7.5
condor_projectcondor
7.7.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
condor
sid
23.6.2+dfsg-2
fixed
trixie
23.6.2+dfsg-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
condor
trusty
not-affected
saucy
not-affected
raring
ignored
quantal
ignored
precise
dne
oneiric
ignored
lucid
ignored
hardy
dne
Common Weakness Enumeration
References
http://research.cs.wisc.edu/htcondor/security/vulnerabilities/CONDOR-2012-0003.html
http://secunia.com/advisories/51862
http://www.securityfocus.com/bid/57328
http://research.cs.wisc.edu/htcondor/security/vulnerabilities/CONDOR-2012-0003.html
http://secunia.com/advisories/51862
http://www.securityfocus.com/bid/57328