Oval Definition:	oval:com.ubuntu.precise:def:20123864000
Revision Date: 2012-08-06 Version: 1 Title: CVE-2012-3864 on Ubuntu 12.04 LTS (precise) - medium. Description: Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, allows remote authenticated users to read arbitrary files on the puppet master server by leveraging an arbitrary user's certificate and private key in a GET request. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-3864 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'puppet' package in precise was vulnerable but has been fixed (note: '2.7.11-1ubuntu2.1').
BACK