Unrated severityNVD Advisory· Published Dec 23, 2009· Updated Apr 23, 2026
CVE-2009-4133
CVE-2009-4133
Description
Condor 6.5.4 through 7.2.4, 7.3.x, and 7.4.0, as used in MRG, Grid for MRG, and Grid Execute Node for MRG, allows remote authenticated users to queue jobs as an arbitrary user, and thereby gain privileges, by using a Condor command-line tool to modify an unspecified job attribute.
Affected products
33cpe:2.3:a:condor_project:condor:7.1.3:*:*:*:*:*:*:*+ 31 more
- cpe:2.3:a:condor_project:condor:7.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.5:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.6:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.7:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.8:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:6.8.9:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:condor_project:condor:7.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_mrg:1.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- secunia.com/advisories/37766nvdVendor Advisory
- secunia.com/advisories/37803nvdVendor Advisory
- www.cs.wisc.edu/condor/manual/v7.4/8_3Stable_Release.htmlnvdVendor Advisory
- www.cs.wisc.edu/condor/security/vulnerabilities/CONDOR-2009-0001.htmlnvdVendor Advisory
- condor-wiki.cs.wisc.edu/index.cgi/tktviewnvd
- securitytracker.com/idnvd
- www.redhat.com/support/errata/RHSA-2009-1688.htmlnvd
- www.redhat.com/support/errata/RHSA-2009-1689.htmlnvd
- www.securityfocus.com/bid/37443nvd
- bugzilla.redhat.com/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/54984nvd
News mentions
0No linked articles in our index yet.