Apache Hadoop YARN ResourceManager remote command execution

2018-07-20T00:00:00
ID SAINT:07C483E663E723FC252AACB3A86BF536
Type saint
Reporter SAINT Corporation
Modified 2018-07-20T00:00:00

Description

Added: 07/20/2018

Background

Apache Hadoop is a framework that allows for the distributed processing of large data sets across clusters of computers. YARN (Yet Another Resource Negotiator) is the component of Apache Hadoop which manages resources.

Problem

A vulnerability in the REST API in the YARN ResourceManager component allows remote unauthenticated attackers to execute arbitrary commands.

Resolution

Enable secure mode in Apache Hadoop.

References

<https://www.exploit-db.com/exploits/45025/>

Platforms

Linux