The oarsh script in OAR before 2.5.7 allows remote authenticated users of a cluster to obtain sensitive information and possibly gain privileges via vectors related to OpenSSH options.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Oar |
Oar_project |
* |
2.5.6 (including) |
References