CVE-2012-4462

Name of the Vulnerable Software and Affected Versions Condor versions in Red Hat Enterprise MRG 2.3

Description The issue allows remote attackers to cause a denial of service, resulting in a condor schedd restart, by utilizing square brackets in the cproc option when removing a job. This is due to a flaw in the avairy/jobcontrol.py script.

Recommendations For Condor versions in Red Hat Enterprise MRG 2.3, consider restricting the use of square brackets in the cproc option as a temporary workaround until a patch is available. Avoid using the cproc option with square brackets in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.