Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4925

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2011-4925
Last Modified 01 Feb 2012 11:09:18
Published 12 Jan 2012 11:14:38
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2011-4925

Summary

Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors.

Vulnerable Systems

Application

  • Cluster Resources Torque Resource Manager 1.0.1p0

  • Cluster Resources Torque Resource Manager 1.0.1p1

  • Cluster Resources Torque Resource Manager 1.0.1p2

  • Cluster Resources Torque Resource Manager 1.0.1p3

  • Cluster Resources Torque Resource Manager 1.0.1p4

  • Cluster Resources Torque Resource Manager 1.0.1p5

  • Cluster Resources Torque Resource Manager 1.0.1p6

  • Cluster Resources Torque Resource Manager 1.1.0p0

  • Cluster Resources Torque Resource Manager 1.1.0p1

  • Cluster Resources Torque Resource Manager 1.1.0p2

  • Cluster Resources Torque Resource Manager 1.1.0p3

  • Cluster Resources Torque Resource Manager 1.1.0p4

  • Cluster Resources Torque Resource Manager 1.1.0p5

  • Cluster Resources Torque Resource Manager 1.1.0p6

  • Cluster Resources Torque Resource Manager 1.2.0p0

  • Cluster Resources Torque Resource Manager 1.2.0p1

  • Cluster Resources Torque Resource Manager 1.2.0p2

  • Cluster Resources Torque Resource Manager 1.2.0p3

  • Cluster Resources Torque Resource Manager 1.2.0p4

  • Cluster Resources Torque Resource Manager 1.2.0p5

  • Cluster Resources Torque Resource Manager 1.2.0p6

  • Cluster Resources Torque Resource Manager 2.0.0p0

  • Cluster Resources Torque Resource Manager 2.0.0p1

  • Cluster Resources Torque Resource Manager 2.0.0p2

  • Cluster Resources Torque Resource Manager 2.0.0p3

  • Cluster Resources Torque Resource Manager 2.0.0p4

  • Cluster Resources Torque Resource Manager 2.0.0p5

  • Cluster Resources Torque Resource Manager 2.0.0p6

  • Clusterresources Torque Resource Manager 2.1.0p0

  • Clusterresources Torque Resource Manager 2.1.1

  • Clusterresources Torque Resource Manager 2.1.2

  • Clusterresources Torque Resource Manager 2.2.0

  • Clusterresources Torque Resource Manager 2.3.0

  • Clusterresources Torque Resource Manager 2.3.1

  • Clusterresources Torque Resource Manager 2.3.10

  • Clusterresources Torque Resource Manager 2.3.11

  • Clusterresources Torque Resource Manager 2.3.12

  • Clusterresources Torque Resource Manager 2.3.2

  • Clusterresources Torque Resource Manager 2.3.3

  • Clusterresources Torque Resource Manager 2.3.4

  • Clusterresources Torque Resource Manager 2.3.5

  • Clusterresources Torque Resource Manager 2.3.6

  • Clusterresources Torque Resource Manager 2.3.7

  • Clusterresources Torque Resource Manager 2.3.8

  • Clusterresources Torque Resource Manager 2.3.9

  • Clusterresources Torque Resource Manager 2.4.0

  • Clusterresources Torque Resource Manager 2.4.1

  • Clusterresources Torque Resource Manager 2.4.10

  • Clusterresources Torque Resource Manager 2.4.11

  • Clusterresources Torque Resource Manager 2.4.12

  • Clusterresources Torque Resource Manager 2.4.2

  • Clusterresources Torque Resource Manager 2.4.3

  • Clusterresources Torque Resource Manager 2.4.4

  • Clusterresources Torque Resource Manager 2.4.5

  • Clusterresources Torque Resource Manager 2.4.6

  • Clusterresources Torque Resource Manager 2.4.7

  • Clusterresources Torque Resource Manager 2.4.8

  • Clusterresources Torque Resource Manager 2.4.9

  • Clusterresources Torque Resource Manager 2.5.0

  • Clusterresources Torque Resource Manager 2.5.1

  • Clusterresources Torque Resource Manager 2.5.2

  • Clusterresources Torque Resource Manager 2.5.3

  • Clusterresources Torque Resource Manager 2.5.4

  • Clusterresources Torque Resource Manager 2.5.5

  • Clusterresources Torque Resource Manager 2.5.6

  • Clusterresources Torque Resource Manager 2.5.7

  • Clusterresources Torque Resource Manager 2.5.8


References

CONFIRM - http://www.adaptivecomputing.com/resources/docs/torque/3-0-3/changelog.php#259

SECUNIA - 47381

MLIST - [oss-security] 20120105 Re: CVE request: TORQUE Munge Authentication Security Bypass

MLIST - [oss-security] 20120105 CVE request: TORQUE Munge Authentication Security Bypass

BID - 51224


Last Updated: 27 May 2016 10:58:02