Vulnerability CVE-2011-3869

Vulnerability Name:

CVE-2011-3869 (CCN-70274)

Assigned:

2011-09-28

Published:

2011-09-28

Updated:

2019-07-10

Summary:

Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink attack on the .k5login file.

CVSS v3 Severity:

5.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

6.3 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:C/A:C)
5.5 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:C/A:C/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): Complete

3.3 Low (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P)
2.9 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-59

Vulnerability Consequences:

File Manipulation

References:

Source: MITRE
Type: CNA
CVE-2011-3869

Source: CONFIRM
Type: Patch
http://groups.google.com/group/puppet-announce/browse_thread/thread/91e3b46d2328a1cb

Source: FEDORA
Type: Patch
FEDORA-2011-13636

Source: FEDORA
Type: UNKNOWN
FEDORA-2011-13633

Source: FEDORA
Type: Patch
FEDORA-2011-13623

Source: CCN
Type: Puppet Bug #9790
TOCTOU vulnerability in ssh_authorized_keys.

Source: CCN
Type: SA46286
Puppet Multiple Security Issues

Source: SECUNIA
Type: Vendor Advisory
46458

Source: DEBIAN
Type: UNKNOWN
DSA-2314

Source: DEBIAN
Type: DSA-2314
puppet -- multiple vulnerabilities

Source: CCN
Type: OSVDB ID: 75988
Puppet k5login File Handling Symlink k5login Overwrite

Source: CCN
Type: Puppet Labs Web site
Puppet

Source: CCN
Type: BID-49909
Puppet Multiple Security Vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-1223-1

Source: UBUNTU
Type: UNKNOWN
USN-1223-2

Source: XF
Type: UNKNOWN
puppet-k5login-symlink(70274)

Source: CONFIRM
Type: UNKNOWN
https://puppet.com/security/cve/cve-2011-3869

Vulnerable Configuration:

Configuration 1:

cpe:/a:puppet:puppet:2.6.0:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.1:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.2:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.3:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.4:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.5:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.6:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.7:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.8:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.9:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.10:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.7.2:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.7.3:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.7.4:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.7.0:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.7.1:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:puppet:puppet:0.25.0:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:0.25.1:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:0.25.2:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:0.25.3:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:0.25.4:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:0.25.5:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:0.25.6:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:puppet:puppet:2.6.3:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.4:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.7.4:*:*:*:*:*:*:*

OR cpe:/a:puppet:puppet:2.6.10:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:42426	P	Security update for mokutil (Moderate)	2022-08-03
oval:org.opensuse.security:def:20113869	V	CVE-2011-3869	2022-05-20
oval:org.opensuse.security:def:31754	P	Security update for libsndfile (Important)	2022-01-05
oval:org.opensuse.security:def:26167	P	Security update for php72 (Moderate)	2021-11-19
oval:org.opensuse.security:def:31703	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:31289	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-10-18
oval:org.opensuse.security:def:26145	P	Security update for the Linux Kernel (Important)	2021-10-12
oval:org.opensuse.security:def:32196	P	Security update for python-urllib3 (Moderate)	2021-09-29
oval:org.opensuse.security:def:31277	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:26136	P	Security update for gd (Moderate)	2021-09-23
oval:org.opensuse.security:def:31278	P	Security update for xen (Important)	2021-09-23
oval:org.opensuse.security:def:42217	P	Security update for libesmtp (Important)	2021-09-21
oval:org.opensuse.security:def:26110	P	Security update for aspell (Important)	2021-08-25
oval:org.opensuse.security:def:32982	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:32151	P	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:26092	P	Security update for the Linux Kernel (Important)	2021-07-20
oval:org.opensuse.security:def:31644	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:26078	P	Security update for libxml2 (Moderate)	2021-06-18
oval:org.opensuse.security:def:32943	P	Security update for caribou (Important)	2021-06-10
oval:org.opensuse.security:def:42683	P	puppet-2.7.26-0.5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36276	P	puppet-2.7.26-0.5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32109	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:32095	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:26039	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:26029	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:31363	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:31743	P	Security update for python (Moderate)	2021-03-16
oval:org.opensuse.security:def:31742	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:26198	P	Security update for avahi (Moderate)	2021-02-23
oval:org.opensuse.security:def:32261	P	Security update for krb5-appl (Important)	2021-02-19
oval:org.opensuse.security:def:31731	P	Security update for java-1_7_1-ibm (Important)	2021-02-18
oval:org.opensuse.security:def:32239	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:32200	P	Security update for python3 (Important)	2021-02-08
oval:org.opensuse.security:def:32097	P	Security update for flac (Moderate)	2021-01-04
oval:org.opensuse.security:def:35810	P	puppet-2.6.12-0.10.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36019	P	puppet-2.6.18-0.4.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31486	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:25786	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26557	P	gnome-screensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32052	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:26286	P	Security update for libcdio (Low)	2020-12-01
oval:org.opensuse.security:def:27274	P	puppet on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32352	P	Security update for squid3 (Important)	2020-12-01
oval:org.opensuse.security:def:26982	P	libxslt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25837	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:31939	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:25569	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:32496	P	coolkey on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25360	P	Security update for xrdp (Important)	2020-12-01
oval:org.opensuse.security:def:25772	P	Security update for gstreamer-0_10-plugins-bad (Moderate)	2020-12-01
oval:org.opensuse.security:def:31943	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:33200	P	lvm2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25436	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:26402	P	Security update for irssi (Moderate)	2020-12-01
oval:org.opensuse.security:def:32305	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:25994	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:32053	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:31485	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:25702	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:26543	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31960	P	Security update for gtk2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26247	P	Security update for bluez (Moderate)	2020-12-01
oval:org.opensuse.security:def:32774	P	puppet on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31571	P	Security update for strongswan (Moderate)	2020-12-01
oval:org.opensuse.security:def:25990	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:27239	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26344	P	Security update for mbedtls (Moderate)	2020-12-01
oval:org.opensuse.security:def:25826	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31852	P	Recommended udpate for SUSE Manager Client Tools (Low)	2020-12-01
oval:org.opensuse.security:def:25568	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:31587	P	Security update for tcpdump (Important)	2020-12-01
oval:org.opensuse.security:def:32457	P	Security update for xorg-x11-libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26809	P	puppet on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25644	P	Security update for taglib (Low)	2020-12-01
oval:org.opensuse.security:def:31887	P	Security update for emacs (Important)	2020-12-01
oval:org.opensuse.security:def:32562	P	libpoppler-glib4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25372	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:26251	P	Security update for zziplib (Moderate)	2020-12-01
oval:org.opensuse.security:def:25910	P	Security update for gstreamer-0_10-plugins-base (Low)	2020-12-01
oval:org.opensuse.security:def:32031	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25645	P	Security update for the Linux Kernel (Critical)	2020-12-01
oval:org.opensuse.security:def:26504	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:31828	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:32735	P	libtiff3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31497	P	Security update for python-lxml	2020-12-01
oval:org.opensuse.security:def:25937	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26601	P	libsamplerate on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26300	P	Security update for gimp (Moderate)	2020-12-01
oval:org.opensuse.security:def:25825	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:31795	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:31495	P	Security update for Python	2020-12-01
oval:org.opensuse.security:def:32408	P	Security update for wget (Moderate)	2020-12-01
oval:org.opensuse.security:def:27017	P	puppet on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25901	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26774	P	libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25580	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:32518	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25361	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:25853	P	Security update for gtk2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31992	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:33239	P	puppet on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25564	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:26455	P	Security update for chromium (Important)	2020-12-01
oval:org.mitre.oval:def:20948	P	USN-1223-1 -- puppet vulnerabilities	2014-06-30
oval:org.mitre.oval:def:21191	P	USN-1223-2 -- puppet regression	2014-06-30
oval:org.mitre.oval:def:15153	P	DSA-2314-1 puppet -- multiple	2014-06-23

BACK