Puppet CVE-2013-1654 Security Bypass Vulnerability

Bugtraq ID: 58453
Class: Design Error
CVE: CVE-2013-1654
Remote: Yes
Local: No
Published: Mar 09 2013 12:00AM
Updated: Apr 13 2015 09:54PM
Credit: Puppet Labs
Vulnerable: Ubuntu Ubuntu Linux 12.10
Ubuntu Ubuntu Linux 12.04 LTS amd64
Ubuntu Ubuntu Linux 11.10
SuSE SUSE Linux Enterprise Server for VMware 11 SP2
+ Linux kernel 2.6.5
SuSE SUSE Linux Enterprise Server 11 SP2
+ Linux kernel 2.6.5
SuSE Suse Linux Enterprise Desktop 11 SP2
+ Linux kernel 2.6.5
Redhat OpenStack Folsom 0
Redhat OpenStack Essex 0
Puppetlabs Puppet Enterprise 2.7.1
Puppetlabs Puppet Enterprise 2.7
Puppetlabs Puppet Enterprise 1.2
Puppetlabs Puppet Enterprise 1.1
Puppetlabs Puppet Enterprise 1.0
Puppetlabs Puppet 3.1
Puppetlabs Puppet 2.7.18
Puppetlabs Puppet 2.7.13
Puppetlabs Puppet 2.7.11
Puppetlabs Puppet 2.7.10
Puppetlabs Puppet 2.6.17
Puppetlabs Puppet 2.6.15
Puppetlabs Puppet 2.6.14
Puppetlabs Puppet 2.6.13
Puppetlabs Puppet 2.6.11
Puppetlabs Puppet 2.6.10
Puppetlabs Puppet 2.6.4
Puppetlabs Puppet 2.6.3
Puppetlabs Puppet 2.6
Oracle Oracle HTTP Server 11.1.1.6.0
Oracle Fusion Middleware 10.1.3 .5
Oracle Forms and Reports 11g Release 2 11.1.2.1
Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable: Puppetlabs Puppet Enterprise 2.7.2
Puppetlabs Puppet Enterprise 1.2.7
Puppetlabs Puppet 3.1.1
Puppetlabs Puppet 2.7.21
Puppetlabs Puppet 2.6.18


 

Privacy Statement
Copyright 2010, SecurityFocus