• info
• discussion
• exploit
• solution
• references

Apache Hadoop CVE-2012-1574 Unspecified User Impersonation Vulnerability

Apache Hadoop is prone to an unspecified user-impersonation vulnerability.

An attacker can exploit this issue to impersonate arbitrary users and perform unauthorized actions.

Apache Hadoop versions prior to 1.0.2 are vulnerable.