1. Home
  2. CVE Database
  3. CVE-2011-2193
HIGH · 8.5

CVE-2011-2193

Multiple buffer overflows in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.x before 2.4.14, 2.5.x before 2.5.6, and 3.x before 3.0.2 allow (1) remote authenticated u...

Vulnerability Description

Multiple buffer overflows in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.x before 2.4.14, 2.5.x before 2.5.6, and 3.x before 3.0.2 allow (1) remote authenticated users to gain privileges via a long Job_Name field in a qsub command to the server, and might allow (2) local users to gain privileges via vectors involving a long host variable in pbs_iff.

CVSS Score

8.5

HIGH

AV:N/AC:M/Au:S/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
ClusterresourcesTorque Resource Manager2.1.0

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2011-2193?

CVE-2011-2193 is a vulnerability with a CVSS score of 8.5 (HIGH). Multiple buffer overflows in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.x before 2.4.14, 2.5.x before 2.5.6, and 3.x before 3.0.2 allow (1) remote authenticated u...

How severe is CVE-2011-2193?

CVE-2011-2193 has been rated HIGH with a CVSS base score of 8.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-2193?

Check the references section above for vendor advisories and patch information. Affected products include: Clusterresources Torque Resource Manager.