Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2010/03/31 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-917-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.7CVSS6.5AI score0.00377EPSS
Exploits1References2
securityvulns
securityvulns
added 2010/03/25 12:0 a.m.44 views

[USN-917-1] Puppet vulnerabilities

=========================================================== Ubuntu Security Notice USN-917-1 March 24, 2010 puppet vulnerabilities CVE-2009-3564, CVE-2010-0156 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 9.10 This...

4.7CVSS0.00377EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2010/03/25 12:0 a.m.26 views

Ubuntu 9.10 : puppet vulnerabilities (USN-917-1)

It was discovered that Puppet did not drop supplementary groups when being run as a different user. A local user may be able to use this flaw to bypass security restrictions and gain access to restricted files. CVE-2009-3564 It was discovered that Puppet did not correctly handle temporary files. ...

4.7CVSS5.7AI score0.00377EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2010/03/24 12:40 p.m.50 views

USN-917-1: Puppet vulnerabilities

It was discovered that Puppet did not drop supplementary groups when being run as a different user. A local user may be able to use this flaw to bypass security restrictions and gain access to restricted files. CVE-2009-3564 It was discovered that Puppet did not correctly handle temporary files. ...

4.7CVSS5.4AI score0.00377EPSS
Exploits1
NVD
NVD
added 2009/10/06 5:30 p.m.20 views

CVE-2009-3564

puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...

4.7CVSS6.1AI score0.00377EPSS
Exploits1References3
OSV
OSV
added 2009/10/06 5:30 p.m.5 views

CVE-2009-3564

puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...

4.7CVSS6.4AI score0.00377EPSS
Exploits1References6
CVE
CVE
added 2009/10/06 5:22 p.m.53 views

CVE-2009-3564

Puppet CVE-2009-3564 affects Puppet (puppetmasterd) where supplementary groups are not dropped when switching users, enabling local access to restricted files. Affected: Puppet up to version 0.24.6 (noted in the Ubuntu USN-917-1 advisory); remediation: upgrade to the patched release (e.g., Puppet...

4.7CVSS5.9AI score0.00377EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder