Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3848

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-3848
Last Modified 13 May 2012 12:00:00
Published 27 Oct 2011 04:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-3848

Summary

Directory traversal vulnerability in Puppet 2.6.x before 2.6.10 and 2.7.x before 2.7.4 allows remote attackers to write X.509 Certificate Signing Request (CSR) to arbitrary locations via (1) a double-encoded key parameter in the URI in 2.7.x, (2) the CN in the Subject of a CSR in 2.6 and 0.25.

Vulnerable Systems

Application

  • Puppetlabs Puppet 2.6.0

  • Puppetlabs Puppet 2.6.1

  • Puppetlabs Puppet 2.6.2

  • Puppetlabs Puppet 2.6.3

  • Puppetlabs Puppet 2.6.4

  • Puppetlabs Puppet 2.6.5

  • Puppetlabs Puppet 2.6.6

  • Puppetlabs Puppet 2.6.7

  • Puppetlabs Puppet 2.6.8

  • Puppetlabs Puppet 2.6.9

  • Puppetlabs Puppet 2.7.0

  • Puppetlabs Puppet 2.7.1

  • Puppetlabs Puppet 2.7.2

  • Puppetlabs Puppet 2.7.3


References

CONFIRM - https://groups.google.com/group/puppet-announce/browse_thread/thread/e57ce2740feb9406

UBUNTU - USN-1217-1

DEBIAN - DSA-2314

SECUNIA - 46628

SUSE - openSUSE-SU-2011:1190

Related Patches

Novell SUSE 2011:5421 puppet security update for SLE 11 SP1 i586

Novell SUSE 2011:5421 puppet security update for SLE 11 SP1 x86_64


Last Updated: 27 May 2016 10:57:46