2 matches found
Authorization Bypass
Red Hat Enterprise MRG is vulnerable to authorization bypass. The Management Console Installation Guide for Red Hat Enterprise MRG 1.3 instructed administrators to configure Condor to allow the MRG Management Console cumin to submit jobs on behalf of a user. This configuration facilitated a trust...
plugin: enable QUEUE_ALL_USERS_TRUSTED for Submit/Hold/Release/Remove ops
The installation documentation for Red Hat Enterprise Messaging, Realtime and Grid MRG 1.3 recommends that Condor should be configured so that the MRG Management Console cumin can submit jobs for users, which creates a trusted channel with insufficient access control that allows local users with...