Описание
Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary files via a symlink attack on the SSH authorized_keys file.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.7.1-1ubuntu3 |
| hardy | not-affected | |
| lucid | released | 0.25.4-2ubuntu6.3 |
| maverick | released | 2.6.1-0ubuntu2.2 |
| natty | released | 2.6.4-2ubuntu2.3 |
| upstream | released | 2.6.11, 2.7.5 |
Показывать по
6.3 Medium
CVSS2
Связанные уязвимости
Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary files via a symlink attack on the SSH authorized_keys file.
Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary files via a symlink attack on the SSH authorized_keys file.
Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows loca ...
Puppet allows local users to modify the permissions of arbitrary files
Уязвимости операционной системы Gentoo Linux, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
6.3 Medium
CVSS2