Globus Toolkit Nexus Globus-Job-Manager Denial of Service Vulnerability

Bugtraq ID:	24051
Class:	Unknown
CVE:	CVE-2007-2784
Remote:	Yes
Local:	No
Published:	May 18 2007 12:00AM
Updated:	May 07 2015 05:39PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Globus Globus Toolkit 4.1.1 Globus Globus Toolkit 4.1 Globus Globus Toolkit 4.0.4 Globus Globus Toolkit 4.0.3 Globus Globus Toolkit 4.0.2 Globus Globus Toolkit 4.0.1 Globus Globus Toolkit 3.2.1 Globus Globus Toolkit 3.2
Not Vulnerable:

Globus Toolkit Nexus Globus-Job-Manager Denial of Service Vulnerability

Globus Toolkit is prone to an denial-of-service vulnerability.

Successful exploits may allow remote attackers to cause denial-of-service conditions. The vendor reports that multiple attacks may consume excessive memory and cause a complete system crash.

This issue affects Globus Toolkit 4.1.1 and prior versions.

Globus Toolkit Nexus Globus-Job-Manager Denial of Service Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Globus Toolkit Nexus Globus-Job-Manager Denial of Service Vulnerability

Solution:
The vendor has released an advisory and fixes to address this issue. Please see the references for more information.

Globus Toolkit Nexus Globus-Job-Manager Denial of Service Vulnerability

References:

• [security-announce] Globus Security Advisory 2007-03: Nexus vulnerability (Globus)
  
• Globus Toolkit Web Site (Globus)