Detections
Analytics

CVE-2008-3830

high

Description

Condor before 7.0.5 does not properly handle when the configuration specifies overlapping netmasks in allow or deny rules, which causes the rule to be ignored and allows attackers to bypass intended access restrictions.

References

https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00264.html

http://www.vupen.com/english/advisories/2008/2760

http://www.securitytracker.com/id?1021002

http://www.securityfocus.com/bid/31621

http://www.redhat.com/support/errata/RHSA-2008-0924.html

http://www.redhat.com/support/errata/RHSA-2008-0911.html

http://www.cs.wisc.edu/condor/manual/v7.0/8_3Stable_Release.html#SECTION00931000000000000000

http://secunia.com/advisories/32232

http://secunia.com/advisories/32193

http://secunia.com/advisories/32189

Details

Source: Mitre, NVD

Published: 2008-10-08

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Severity: High