Globus Toolkit Nexus Globus-Job-Manager Denial of Service Vulnerability
TITLE: Globus Toolkit Nexus Globus-Job-Manager Denial of Service Vulnerability
CLASS: Unknown
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: May 18 2007 12:00AM
UPDATE: May 18 2007 10:38PM
CREDIT: The vendor disclosed this issue.
VULNERABLE:
Globus Globus Toolkit 4.1.1NOT VULNERABLE:
Globus Globus Toolkit 4.1
Globus Globus Toolkit 4.0.4
Globus Globus Toolkit 4.0.3
Globus Globus Toolkit 4.0.2
Globus Globus Toolkit 4.0.1
Globus Globus Toolkit 3.2.1
Globus Globus Toolkit 3.2
Vai alla pagina originale su Security Focus
Discussion
Globus Toolkit is prone to an denial-of-service vulnerability.
Successful exploits may allow remote attackers to cause denial-of-service conditions. The vendor reports that multiple attacks may consume excessive memory and cause a complete system crash.
This issue affects Globus Toolkit 4.1.1 and prior versions.
Exploit
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.
Solution
Solution:
The vendor has released an advisory and fixes to address this issue. Please see the references for more information.
References
References:
- [security-announce] Globus Security Advisory 2007-03: Nexus vulnerability (Globus)
- Globus Toolkit Web Site (Globus)