Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Condor before 7.8.2 allows remote attackers to bypass host-based authentication and execute actions such as ALLOW_ADMINISTRATOR or ALLOW_WRITE by connecting from a system with a spoofed reverse DNS hostname.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HTCondor 授权问题漏洞
Vulnerability Description
HTCondor是美国威斯康星大学麦迪逊分校(University of Wisconsin-Madison)的一套工作负载管理系统。该系统提供作业排队机制、调度策略、优先级方案、资源监视和资源管理等功能。 HTCondor 7.8.2之前版本中存在授权问题漏洞,可被恶意攻击者利用绕过某些安全限制。该漏洞源于处理反向DNS查找主机名时,应用程序未正确验证IP地址。攻击者可利用该漏洞通过特制的反向DNS记录绕过基于主机的认证,例如停止应用程序或作为管理员或其他用户执行某些其他操作。成功的利用需要基于主机的认
CVSS Information
N/A
Vulnerability Type
N/A