PBS Pro race condition vulnerability

Application: PBS Pro part od PBS Works by Altair Engineering Affected version: 10.4 OS: Linux/UNIX CVE ID: pending Class: temporary file creation race condition Remote: no Threat: destroy arbitrary choosen file of other user Discovered: 02.02.2010 Discovered by: Bartlomiej Balcerek Background: PB...

PBS Pro symbolic links vulnerability

Symbolic links vulnerability on temporary files creation...

PBS Pro Race Condition

!/bin/bash set -x PBS Pro int mainint argc, char argv if argc 3 printf"%s","Need 2 arguments!";exit1; while 1 symlinkargv1,argv2; ; EOF if ! -x racer.x ; then echo "Cannot compile C code, do you have gcc installed ?" ;exit 1; fi echo Submitting job... jobname=echo hostname | qsub -j oe -o out.txt...

Altair Engineering PBS Pro 10.x - 'pbs_mom' Insecure Temporary File Creation

source: https://www.securityfocus.com/bid/41449/info Altair Engineering PBS Pro creates temporary files in an insecure manner. An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected applicatio...