Puppet CVE-2013-1654 Security Bypass Vulnerability

Puppet is prone to a security-bypass vulnerability.

Successful exploits will allow attackers to bypass certain security restrictions, which may aid in further attacks.

The issue is fixed in the following versions:

Puppet 2.6.18, 2.7.21, and 3.1.1.
Puppet Enterprise 1.2.7 and 2.7.2.


 

Privacy Statement
Copyright 2010, SecurityFocus