2003 matches found
[SECURITY] Fedora 12 Update: puppet-0.25.4-1.fc12
Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...
[SECURITY] Fedora 11 Update: puppet-0.25.4-1.fc11
Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...
CVE-2009-3564
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...
CVE-2009-3564
Puppet CVE-2009-3564 affects Puppet (puppetmasterd) where supplementary groups are not dropped when switching users, enabling local access to restricted files. Affected: Puppet up to version 0.24.6 (noted in the Ubuntu USN-917-1 advisory); remediation: upgrade to the patched release (e.g., Puppet...
CVE-2009-3564
puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...
Fedora Core 10 FEDORA-2009-8494 (puppet)
The remote host is missing an update to puppet announced via advisory FEDORA-2009-8494. OpenVAS Vulnerability Test $Id: fcore20098494.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8494 puppet Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...
Fedora Core 10 FEDORA-2009-8494 (puppet)
The remote host is missing an update to puppet announced via advisory FEDORA-2009-8494. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Fedora Core 11 FEDORA-2009-8477 (puppet)
The remote host is missing an update to puppet announced via advisory FEDORA-2009-8477. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Fedora Core 11 FEDORA-2009-8477 (puppet)
The remote host is missing an update to puppet announced via advisory FEDORA-2009-8477. OpenVAS Vulnerability Test $Id: fcore20098477.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8477 puppet Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...
Fedora 10 : puppet-0.24.8-4.fc10 (2009-8494)
This update fixes a number of bugs in both the packaging and upstream source. See the package changelog and bug reports for complete details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
Fedora 11 : puppet-0.24.8-4.fc11 (2009-8477)
This update fixes a number of bugs in both the packaging and upstream source. See the package changelog and bug reports for complete details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
[SECURITY] Fedora 11 Update: puppet-0.24.8-4.fc11
Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...
[SECURITY] Fedora 10 Update: puppet-0.24.8-4.fc10
Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...
Command injection
cgi-bin/webutil.pl in The Puppet Master WebUtil 2.7 allows remote attackers to execute arbitrary commands via shell metacharacters in the details command...
CVE-2008-6557
cgi-bin/webutil.pl in The Puppet Master WebUtil 2.7 allows remote attackers to execute arbitrary commands via shell metacharacters in the details command...
CVE-2008-6556
cgi-bin/webutil.pl in The Puppet Master WebUtil 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the whois command...
CVE-2008-6557
CVE-2008-6557 describes a remote command execution vulnerability in The Puppet Master WebUtil 2.7, caused by shell metacharacters in the details command processed by cgi-bin/webutil.pl. Affected component: WebUtil 2.7; root cause: unsafe handling of shell metacharacters allowing arbitrary command...
CVE-2008-6556
CVE-2008-6556 affects The Puppet Master WebUtil 2.3 via cgi-bin/webutil.pl . The vulnerability allows remote attackers to execute arbitrary commands by supplying shell metacharacters in the whois parameter. The root cause is improper handling of user-supplied input in the whois command, enabling ...
CVE-2008-6555
CVE-2008-6555 affects the WebUtil component in The Puppet Master, specifically the cgi-bin/webutil.pl script. The vulnerability allows remote attackers to execute arbitrary commands via shell metacharacters in the dig command, enabling full compromise of affected systems reachable over the networ...
CVE-2008-6555
cgi-bin/webutil.pl in The Puppet Master WebUtil allows remote attackers to execute arbitrary commands via shell metacharacters in the dig command...