CVE-2009-5136

CVE-2009-5136 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a WANT_SUSPEND policy that evaluate to an UNDEFINED state, which allows remote authenticated users to cause a denial of service (condor_startd exit) via a crafted job.

Learn more about our User Device Pen Test.