Condor before 7.0.4 does not properly handle wildcards in the ALLOW_WRITE, DENY_WRITE, HOSTALLOW_WRITE, or HOSTDENY_WRITE configuration variables in authorization policy lists, which might allow remote attackers to bypass intended access restrictions.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-07-31T22:00:00

Updated: 2024-08-07T09:37:26.835Z

Reserved: 2008-07-31T00:00:00

Link: CVE-2008-3424

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2008-07-31T22:41:00.000

Modified: 2024-01-12T20:45:54.037

Link: CVE-2008-3424

cve-icon Redhat

Severity : Moderate

Publid Date: 2008-07-23T00:00:00Z

Links: CVE-2008-3424 - Bugzilla