Puppet prior to 3.3.3 and 3.4 prior to 3.4.1 and Puppet Enterprise (PE) prior to 2.8.4 and 3.1 prior to 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
puppetlabs puppet |
||
puppet puppet enterprise |
||
debian debian linux 6.0 |
||
debian debian linux 7.0 |
||
debian debian linux 8.0 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 13.04 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 13.10 |