CVE-2012-1989 — Insecure Temporary File in Puppet

CWE-264 CWE-377 — Insecure Temporary File9 documents8 sources

Severity

3.6LOWNVD

EPSS

0.1%

top 81.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Puppet Puppet Enterprise Puppetlabs Puppet

Timeline

PublishedJun 27

Latest updateOct 24

Description

telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise (PE) 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows local users to overwrite arbitrary files via a symlink attack on the NET::Telnet connection log (/tmp/out.log).

CVSS vector

AV:L/AC:L/C:N/I:P/A:PExploitability: 3.9 | Impact: 4.9

Affected Packages5 packages

▶NVDpuppet/puppet_enterprise9 versions+8

▶RubyGemspuppet/puppet2.7.1 — 2.7.13

▶Debianpuppet/puppet< 2.7.13-1

▶NVDpuppet/puppet9 versions+8

▶NVDpuppetlabs/puppet2.7.0, 2.7.1+1

🔴Vulnerability Details

GHSA

Puppet allows local users to overwrite arbitrary files via a symlink attack↗2017-10-24

▶

OSV

Puppet allows local users to overwrite arbitrary files via a symlink attack↗2017-10-24

▶

OSV

CVE-2012-1989: telnet↗2012-06-27

▶

CVEList

CVE-2012-1989: telnet↗2012-06-27

▶

📋Vendor Advisories

Red Hat

puppet: Insecure temporary file use for NET::Telnet connection log (/tmp/out.log)↗2012-04-11

▶

Ubuntu

Puppet vulnerabilities↗2012-04-11

▶

Debian

CVE-2012-1989: puppet - telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise (PE) 1.2.x, 2.0.x,...↗2012

▶

💬Community

Bugzilla

CVE-2012-1989 puppet: Insecure temporary file use for NET::Telnet connection log (/tmp/out.log)↗2012-07-03

▶