Vulnerabilities > Redhat > Enterprise MRG > 1.2

DATE CVE VULNERABILITY TITLE RISK
2013-10-11 CVE-2009-5136 Improper Input Validation vulnerability in multiple products
The policy definition evaluator in Condor before 7.4.2 does not properly handle attributes in a WANT_SUSPEND policy that evaluate to an UNDEFINED state, which allows remote authenticated users to cause a denial of service (condor_startd exit) via a crafted job.
network
low complexity
condor-project redhat CWE-20
4.0
4.0
2010-10-18 CVE-2009-5006 The SessionAdapter::ExchangeHandlerImpl::checkAlternate function in broker/SessionAdapter.cpp in the C++ Broker component in Apache Qpid before 0.6, as used in Red Hat Enterprise MRG before 1.3 and other products, allows remote authenticated users to cause a denial of service (NULL pointer dereference, daemon crash, and cluster outage) by attempting to modify the alternate of an exchange.
network
low complexity
apache redhat
4.0
4.0
2010-10-18 CVE-2009-5005 The Cluster::deliveredEvent function in cluster/Cluster.cpp in Apache Qpid, as used in Red Hat Enterprise MRG before 1.3 and other products, allows remote attackers to cause a denial of service (daemon crash and cluster outage) via invalid AMQP data.
network
low complexity
apache redhat
5.0
5.0
2010-10-12 CVE-2010-3701 Resource Management Errors vulnerability in Redhat Enterprise MRG
lib/MessageStoreImpl.cpp in Red Hat Enterprise MRG before 1.2.2 allows remote authenticated users to cause a denial of service (stack memory exhaustion and broker crash) via a large persistent message.
network
low complexity
redhat CWE-399
4.0
4.0
2010-10-12 CVE-2010-3083 sys/ssl/SslSocket.cpp in qpidd in Apache Qpid, as used in Red Hat Enterprise MRG before 1.2.2 and other products, when SSL is enabled, allows remote attackers to cause a denial of service (daemon outage) by connecting to the SSL port but not participating in an SSL handshake.
network
apache redhat
4.3
4.3
2009-12-23 CVE-2009-4133 Condor 6.5.4 through 7.2.4, 7.3.x, and 7.4.0, as used in MRG, Grid for MRG, and Grid Execute Node for MRG, allows remote authenticated users to queue jobs as an arbitrary user, and thereby gain privileges, by using a Condor command-line tool to modify an unspecified job attribute.
network
low complexity
condor-project redhat
6.5
6.5