CVE-2013-4319

Sažetak

pbs_mom in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.5.x, 4.x, and earlier does not properly restrict access by unprivileged ports, which allows remote authenticated users to execute arbitrary jobs by submitting a command.

Reference

http://www.debian.org/security/2013/dsa-2770
http://www.openwall.com/lists/oss-security/2013/09/09/11
http://www.openwall.com/lists/oss-security/2013/09/09/4
http://www.supercluster.org/pipermail/torqueusers/2013-September/016098.html

CVSS

Base:	9.0
Impact:	10.0
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

15-10-2013 - 16:05

Objavljeno

11-10-2013 - 22:55