This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Globus | First view | 2007-05-21 |
| Product | Globus Toolkit | Last view | 2012-06-07 |
| Version | 4.0.7 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:globus:globus_toolkit | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.6 | 2012-06-07 | CVE-2012-3292 | The GridFTP in Globus Toolkit (GT) before 5.2.2, when certain autoconf macros are defined, does not properly check the return value from the getpwnam_r function, which might allow remote attackers to gain privileges by logging in with a user that does not exist, which causes GridFTP to run as the last user in the password file. |
| 7.8 | 2007-05-21 | CVE-2007-2784 | Unspecified vulnerability in globus-job-manager in Globus Toolkit 4.1.1 and earlier (globus_nexus-6.6 and earlier) allows remote attackers to cause a denial of service (resource exhaustion and system crash) via certain requests to temporary TCP ports for a GRAM2 job or its MPICH-G2 applications. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 100% (1) | CWE-264 | Permissions, Privileges, and Access Controls |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 36094 | Globus Toolkit globus-job-manager MPICH-G2 Application GRAM2 Job Unspecified DoS |
OpenVAS Exploits
| id | Description |
|---|---|
| 2012-08-30 | Name : Fedora Update for globus-gridftp-server-control FEDORA-2012-8445 File : nvt/gb_fedora_2012_8445_globus-gridftp-server-control_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for globus-gridftp-server FEDORA-2012-8445 File : nvt/gb_fedora_2012_8445_globus-gridftp-server_fc17.nasl |
| 2012-08-10 | Name : Debian Security Advisory DSA 2523-1 (globus-gridftp-server) File : nvt/deb_2523_1.nasl |
| 2012-06-04 | Name : Fedora Update for globus-gridftp-server-control FEDORA-2012-8461 File : nvt/gb_fedora_2012_8461_globus-gridftp-server-control_fc16.nasl |
| 2012-06-04 | Name : Fedora Update for globus-gridftp-server FEDORA-2012-8461 File : nvt/gb_fedora_2012_8461_globus-gridftp-server_fc16.nasl |
| 2012-06-04 | Name : Fedora Update for globus-gridftp-server-control FEDORA-2012-8488 File : nvt/gb_fedora_2012_8488_globus-gridftp-server-control_fc15.nasl |
| 2012-06-04 | Name : Fedora Update for globus-gridftp-server FEDORA-2012-8488 File : nvt/gb_fedora_2012_8488_globus-gridftp-server_fc15.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2012-08-07 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-2523.nasl - Type: ACT_GATHER_INFO |
| 2012-06-27 | Name: The remote FTP service is vulnerable to an authentication bypass attack. File: gt_gridftp_6_11.nasl - Type: ACT_GATHER_INFO |
| 2012-06-04 | Name: The remote Fedora host is missing one or more security updates. File: fedora_2012-8445.nasl - Type: ACT_GATHER_INFO |
| 2012-06-04 | Name: The remote Fedora host is missing one or more security updates. File: fedora_2012-8461.nasl - Type: ACT_GATHER_INFO |
| 2012-06-04 | Name: The remote Fedora host is missing one or more security updates. File: fedora_2012-8488.nasl - Type: ACT_GATHER_INFO |
