Apache Hadoop Information Disclosure Vulnerability

Summary

Apache Hadoop is prone to an information-disclosure vulnerability.

Credit:

The original article can be found at: http://www.securityfocus.com/bid/54358
The information has been provided by Aaron T. Myers of Cloudera .


Details

Vulnerable Systems:
 *Apache Hadoop CVE-2012-3376 Information Disclosure Vulnerability

Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks.Apache Hadoop 2.0.0-alpha is vulnerable; other versions may also be affected.

Vendor Status:
Vendor as issued an updated vulnerability.

Patch Availability:
http://hadoop.apache.org/

CVE Information:
CVE-2012-3376

Disclosure Timeline:
Initial Release: Jul 06 2012

Categories: News