CVE-2012-1906 : Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) U

Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 uses predictable file names when installing Mac OS X packages from a remote source, which allows local users to overwrite arbitrary files or install arbitrary packages via a symlink attack on a temporary file in /tmp.

Published 2012-05-29 20:55:07

Updated 2019-07-11 15:09:07

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2012-1906

Puppet » Puppet » Version: 2.6.3
cpe:2.3:a:puppet:puppet:2.6.3:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.0
cpe:2.3:a:puppet:puppet:2.6.0:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.1
cpe:2.3:a:puppet:puppet:2.6.1:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.2
cpe:2.3:a:puppet:puppet:2.6.2:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.8
cpe:2.3:a:puppet:puppet:2.6.8:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.9
cpe:2.3:a:puppet:puppet:2.6.9:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.6
cpe:2.3:a:puppet:puppet:2.6.6:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.7
cpe:2.3:a:puppet:puppet:2.6.7:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.4
cpe:2.3:a:puppet:puppet:2.6.4:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.5
cpe:2.3:a:puppet:puppet:2.6.5:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.2
cpe:2.3:a:puppet:puppet:2.7.2:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.3
cpe:2.3:a:puppet:puppet:2.7.3:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.10
cpe:2.3:a:puppet:puppet:2.6.10:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.4
cpe:2.3:a:puppet:puppet:2.7.4:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.5
cpe:2.3:a:puppet:puppet:2.7.5:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.11
cpe:2.3:a:puppet:puppet:2.6.11:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.13
cpe:2.3:a:puppet:puppet:2.6.13:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.12
cpe:2.3:a:puppet:puppet:2.6.12:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.9
cpe:2.3:a:puppet:puppet:2.7.9:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.8
cpe:2.3:a:puppet:puppet:2.7.8:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.10
cpe:2.3:a:puppet:puppet:2.7.10:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.7
cpe:2.3:a:puppet:puppet:2.7.7:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.6
cpe:2.3:a:puppet:puppet:2.7.6:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.6.14
cpe:2.3:a:puppet:puppet:2.6.14:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet » Version: 2.7.11
cpe:2.3:a:puppet:puppet:2.7.11:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 1.2.2
cpe:2.3:a:puppet:puppet_enterprise:1.2.2:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 1.2.3
cpe:2.3:a:puppet:puppet_enterprise:1.2.3:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 1.2.0
cpe:2.3:a:puppet:puppet_enterprise:1.2.0:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 1.2.1
cpe:2.3:a:puppet:puppet_enterprise:1.2.1:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 2.0.0
cpe:2.3:a:puppet:puppet_enterprise:2.0.0:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 1.2.4
cpe:2.3:a:puppet:puppet_enterprise:1.2.4:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 2.0.1
cpe:2.3:a:puppet:puppet_enterprise:2.0.1:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 2.0.2
cpe:2.3:a:puppet:puppet_enterprise:2.0.2:*:*:*:*:*:*:*
Matching versions
Puppet » Puppet Enterprise » Version: 2.5.0
cpe:2.3:a:puppet:puppet_enterprise:2.5.0:*:*:*:*:*:*:*
Matching versions
Puppetlabs » Puppet » Version: 2.7.0
cpe:2.3:a:puppetlabs:puppet:2.7.0:*:*:*:*:*:*:*
Matching versions
Puppetlabs » Puppet » Version: 2.7.1
cpe:2.3:a:puppetlabs:puppet:2.7.1:*:*:*:*:*:*:*
Matching versions
Puppetlabs » Puppet Enterprise Users » Version: 1.0
cpe:2.3:a:puppetlabs:puppet_enterprise_users:1.0:*:*:*:*:*:*:*
Matching versions
Puppetlabs » Puppet Enterprise Users » Version: 1.1
cpe:2.3:a:puppetlabs:puppet_enterprise_users:1.1:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2012-1906

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 17 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-1906

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.3	LOW	AV:L/AC:M/Au:N/C:N/I:P/A:P	3.4	4.9	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2012-1906

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-1906

http://projects.puppetlabs.com/issues/13260

Bug #13260: appdmg and pkgdmg providers write packages to insecure location - Puppet - Puppet Labs
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/74793

Puppet Mac OS X symlink CVE-2012-1906 Vulnerability Report
http://www.debian.org/security/2012/dsa-2451

Debian -- Security Information -- DSA-2451-1 puppet

CVEs referencing this url
http://www.securityfocus.com/bid/52975

Puppet Multiple Security Vulnerabilities

CVEs referencing this url
http://ubuntu.com/usn/usn-1419-1

USN-1419-1: Puppet vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://puppetlabs.com/security/cve/cve-2012-1906/

CVE-2012-1906 | Puppet
Vendor Advisory

Jump to

Vulnerability Details : CVE-2012-1906

Products affected by CVE-2012-1906

Exploit prediction scoring system (EPSS) score for CVE-2012-1906

CVSS scores for CVE-2012-1906

CWE ids for CVE-2012-1906

References for CVE-2012-1906