CVE-2011-3870 - Link Following vulnerability in Puppetlabs Puppet

Publication

2011-10-27

Last modification

2017-12-09

Summary

Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary files via a symlink attack on the SSH authorized_keys file.

Classification

CWE-59 - Link Following

Risk level (CVSS AV:L/AC:M/Au:N/C:N/I:C/A:C)

Medium

6.3

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Puppetlabs Puppet  2.6.7 , 0.25.4 , 2.7.2 , 0.25.2 , 2.6.0 , 2.6.8 , 0.25.3 , 2.6.4 , 2.6.9 , 2.7.1 , 2.7.0 , 0.25.6 , 2.6.10 , 0.25.5 , 2.6.6 , 2.7.4 , 2.6.3 , 2.6.5 , 0.25.0 , 2.6.1 , 2.6.2 , 2.7.3 , 0.25.1