CVE-2012-3459

Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, allows remote authenticated users to modify Condor attributes and possibly gain privileges via crafted additional parameters in an HTTP POST request, which triggers a job attribute change request to Condor.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:trevor_mckay:cumin:*:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.3160-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.4369-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.4410-2:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.4494-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.4794-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.4916-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5033-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5037-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5054-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5068-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5092-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5098-2:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5105-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5137-1:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5137-2:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5137-3:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5137-4:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5137-5:*:*:*:*:*:*:*
cpe:2.3:a:trevor_mckay:cumin:0.1.5192-1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_mrg:2.0:*:*:*:*:*:*:*

History

21 Nov 2024, 01:40

Type Values Removed Values Added
References () http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=846501 - () http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=846501 -
References () http://rhn.redhat.com/errata/RHSA-2012-1278.html - Vendor Advisory () http://rhn.redhat.com/errata/RHSA-2012-1278.html - Vendor Advisory
References () http://rhn.redhat.com/errata/RHSA-2012-1281.html - Vendor Advisory () http://rhn.redhat.com/errata/RHSA-2012-1281.html - Vendor Advisory
References () http://secunia.com/advisories/50660 - () http://secunia.com/advisories/50660 -
References () http://secunia.com/advisories/50666 - Vendor Advisory () http://secunia.com/advisories/50666 - Vendor Advisory
References () http://www.securityfocus.com/bid/55632 - () http://www.securityfocus.com/bid/55632 -

Information

Published : 2012-09-28 17:55

Updated : 2024-11-21 01:40


NVD link : CVE-2012-3459

Mitre link : CVE-2012-3459

CVE.ORG link : CVE-2012-3459


JSON object : View

Products Affected

redhat

  • enterprise_mrg

trevor_mckay

  • cumin
CWE
CWE-264

Permissions, Privileges, and Access Controls