CVE-2006-4232

Name of the Vulnerable Software and Affected Versions Globus Toolkit versions 3.2.x through 4.1.0

Description A race condition exists in the grid-proxy-init tool, allowing local users to potentially steal credential data. This occurs when the proxy credentials file is replaced between its creation and the check for exclusive file access.

Recommendations For Globus Toolkit versions 3.2.x through 4.1.0, consider updating to a version released after 20060815 to resolve the issue. As a temporary workaround, restrict access to the grid-proxy-init tool to minimize the risk of exploitation.