CVE-2008-3424

Name of the Vulnerable Software and Affected Versions Condor versions prior to 7.0.4

Description The issue is related to the improper handling of wildcards in certain configuration variables, specifically ALLOW WRITE, DENY WRITE, HOSTALLOW WRITE, and HOSTDENY WRITE, within authorization policy lists. This might allow remote attackers to bypass intended access restrictions.

Recommendations For versions prior to 7.0.4, update to version 7.0.4 or later to resolve the issue. As a temporary workaround, consider reviewing and restricting the use of wildcards in the ALLOW WRITE, DENY WRITE, HOSTALLOW WRITE, and HOSTDENY WRITE configuration variables to minimize the risk of exploitation.