CVE-2011-2907

N/A Unknown

Published: August 15, 2011 Modified: April 29, 2026

Description

Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 3.0.1 and earlier allows remote attackers to bypass host-based authentication and submit arbitrary jobs via a modified PBS_O_HOST variable to the qsub program.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/45524

Source: secalert@redhat.com

Vendor Advisory

http://www.clusterresources.com/pipermail/torqueusers/2011-August/013194.html

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2011/08/11/1

Source: secalert@redhat.com

http://www.securityfocus.com/bid/49119

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=713090

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/69138

Source: secalert@redhat.com

https://wiki.egi.eu/wiki/SVG:Advisory-SVG-2011-2296

Source: secalert@redhat.com

http://secunia.com/advisories/45524