[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2014-0749Date: (C)2014-05-18   (M)2023-12-22


Stack-based buffer overflow in lib/Libdis/disrsi_.c in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.5.x through 2.5.13 allows remote attackers to execute arbitrary code via a large count value.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
OSVDB-107024
http://www.securityfocus.com/archive/1/532110/100/0/threaded
EXPLOIT-DB-33554
BID-67420
DSA-2936
http://packetstormsecurity.com/files/126651/Torque-2.5.13-Buffer-Overflow.html
http://packetstormsecurity.com/files/126855/TORQUE-Resource-Manager-2.5.13-Buffer-Overflow.html
https://github.com/adaptivecomputing/torque/commit/3ed749263abe3d69fa3626d142a5789dcb5a5684
https://github.com/adaptivecomputing/torque/pull/171
https://labs.mwrinfosecurity.com/advisories/2014/05/14/torque-buffer-overflow
https://labs.mwrinfosecurity.com/system/assets/662/original/torque-buffer-overflow_2014-05-14.pdf

CPE    14
cpe:/a:adaptivecomputing:torque_resource_manager:2.5.10
cpe:/a:adaptivecomputing:torque_resource_manager:2.5.12
cpe:/a:adaptivecomputing:torque_resource_manager:2.5.11
cpe:/a:adaptivecomputing:torque_resource_manager:2.5.13
...
CWE    1
CWE-119

© SecPod Technologies