Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0749

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2014-0749
Last Modified 24 Jul 2015 02:39:06
Published 16 May 2014 10:55:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-0749

Summary

Stack-based buffer overflow in lib/Libdis/disrsi_.c in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.5.x through 2.5.13 allows remote attackers to execute arbitrary code via a large count value.

Vulnerable Systems

Application

  • Adaptivecomputing Torque Resource Manager 2.5.0

  • Adaptivecomputing Torque Resource Manager 2.5.1

  • Adaptivecomputing Torque Resource Manager 2.5.10

  • Adaptivecomputing Torque Resource Manager 2.5.11

  • Adaptivecomputing Torque Resource Manager 2.5.12

  • Adaptivecomputing Torque Resource Manager 2.5.13

  • Adaptivecomputing Torque Resource Manager 2.5.2

  • Adaptivecomputing Torque Resource Manager 2.5.3

  • Adaptivecomputing Torque Resource Manager 2.5.4

  • Adaptivecomputing Torque Resource Manager 2.5.5

  • Adaptivecomputing Torque Resource Manager 2.5.6

  • Adaptivecomputing Torque Resource Manager 2.5.7

  • Adaptivecomputing Torque Resource Manager 2.5.8

  • Adaptivecomputing Torque Resource Manager 2.5.9


References

CONFIRM - https://github.com/adaptivecomputing/torque/commit/3ed749263abe3d69fa3626d142a5789dcb5a5684

MISC - https://labs.mwrinfosecurity.com/system/assets/662/original/torque-buffer-overflow_2014-05-14.pdf

CONFIRM - https://github.com/adaptivecomputing/torque/pull/171

BUGTRAQ - 20140515 [CVE-2014-0749] TORQUE Buffer Overflow

DEBIAN - DSA-2936

MISC - https://labs.mwrinfosecurity.com/advisories/2014/05/14/torque-buffer-overflow

EXPLOIT-DB - 33554

MISC - http://packetstormsecurity.com/files/126855/TORQUE-Resource-Manager-2.5.13-Buffer-Overflow.html

MISC - http://packetstormsecurity.com/files/126651/Torque-2.5.13-Buffer-Overflow.html

OSVDB - 107024

BID - 67420


Last Updated: 27 May 2016 11:08:53