Lucene search
K

2003 matches found

Fedora
Fedora
added 2010/03/02 1:9 a.m.25 views

[SECURITY] Fedora 12 Update: puppet-0.25.4-1.fc12

Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...

3.3CVSS6.3AI score0.00325EPSS
Exploits0
Fedora
Fedora
added 2010/03/02 12:53 a.m.31 views

[SECURITY] Fedora 11 Update: puppet-0.25.4-1.fc11

Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...

3.3CVSS6.3AI score0.00325EPSS
Exploits0
NVD
NVD
added 2009/10/06 5:30 p.m.20 views

CVE-2009-3564

puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...

4.7CVSS6.1AI score0.00377EPSS
Exploits1References3
CVE
CVE
added 2009/10/06 5:22 p.m.53 views

CVE-2009-3564

Puppet CVE-2009-3564 affects Puppet (puppetmasterd) where supplementary groups are not dropped when switching users, enabling local access to restricted files. Affected: Puppet up to version 0.24.6 (noted in the Ubuntu USN-917-1 advisory); remediation: upgrade to the patched release (e.g., Puppet...

4.7CVSS5.9AI score0.00377EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2009/10/06 12:0 a.m.17 views

CVE-2009-3564

puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files...

4.7CVSS5.9AI score0.00377EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.8 views

Fedora Core 10 FEDORA-2009-8494 (puppet)

The remote host is missing an update to puppet announced via advisory FEDORA-2009-8494. OpenVAS Vulnerability Test $Id: fcore20098494.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8494 puppet Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...

Exploits0References5
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.19 views

Fedora Core 10 FEDORA-2009-8494 (puppet)

The remote host is missing an update to puppet announced via advisory FEDORA-2009-8494. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.4AI score
Exploits0References6
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.14 views

Fedora Core 11 FEDORA-2009-8477 (puppet)

The remote host is missing an update to puppet announced via advisory FEDORA-2009-8477. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.4AI score
Exploits0References6
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.9 views

Fedora Core 11 FEDORA-2009-8477 (puppet)

The remote host is missing an update to puppet announced via advisory FEDORA-2009-8477. OpenVAS Vulnerability Test $Id: fcore20098477.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8477 puppet Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...

Exploits0References5
Tenable Nessus
Tenable Nessus
added 2009/09/14 12:0 a.m.15 views

Fedora 10 : puppet-0.24.8-4.fc10 (2009-8494)

This update fixes a number of bugs in both the packaging and upstream source. See the package changelog and bug reports for complete details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

5.4AI score
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2009/09/14 12:0 a.m.16 views

Fedora 11 : puppet-0.24.8-4.fc11 (2009-8477)

This update fixes a number of bugs in both the packaging and upstream source. See the package changelog and bug reports for complete details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

5.4AI score
Exploits0References6
Fedora
Fedora
added 2009/09/11 11:37 p.m.13 views

[SECURITY] Fedora 11 Update: puppet-0.24.8-4.fc11

Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...

2.1AI score
Exploits0
Fedora
Fedora
added 2009/09/11 11:24 p.m.11 views

[SECURITY] Fedora 10 Update: puppet-0.24.8-4.fc10

Puppet lets you centrally manage every important aspect of your system usin g a cross-platform specification language that manages all the separate elements normally aggregated in different files, like users, cron jobs, and hosts, along with obviously discrete elements like packages, services, an...

2.1AI score
Exploits0
Prion
Prion
added 2009/03/30 8:30 p.m.16 views

Command injection

cgi-bin/webutil.pl in The Puppet Master WebUtil 2.7 allows remote attackers to execute arbitrary commands via shell metacharacters in the details command...

10CVSS8.2AI score0.0317EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2009/03/30 8:30 p.m.20 views

CVE-2008-6557

cgi-bin/webutil.pl in The Puppet Master WebUtil 2.7 allows remote attackers to execute arbitrary commands via shell metacharacters in the details command...

10CVSS7.6AI score0.0317EPSS
Exploits1References5
NVD
NVD
added 2009/03/30 8:30 p.m.21 views

CVE-2008-6556

cgi-bin/webutil.pl in The Puppet Master WebUtil 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the whois command...

10CVSS7.6AI score0.0317EPSS
Exploits1References5
CVE
CVE
added 2009/03/30 8:0 p.m.50 views

CVE-2008-6557

CVE-2008-6557 describes a remote command execution vulnerability in The Puppet Master WebUtil 2.7, caused by shell metacharacters in the details command processed by cgi-bin/webutil.pl. Affected component: WebUtil 2.7; root cause: unsafe handling of shell metacharacters allowing arbitrary command...

10CVSS7.9AI score0.0317EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2009/03/30 8:0 p.m.41 views

CVE-2008-6556

CVE-2008-6556 affects The Puppet Master WebUtil 2.3 via cgi-bin/webutil.pl . The vulnerability allows remote attackers to execute arbitrary commands by supplying shell metacharacters in the whois parameter. The root cause is improper handling of user-supplied input in the whois command, enabling ...

10CVSS7.9AI score0.0317EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2009/03/30 8:0 p.m.47 views

CVE-2008-6555

CVE-2008-6555 affects the WebUtil component in The Puppet Master, specifically the cgi-bin/webutil.pl script. The vulnerability allows remote attackers to execute arbitrary commands via shell metacharacters in the dig command, enabling full compromise of affected systems reachable over the networ...

10CVSS7.9AI score0.04457EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/03/30 8:0 p.m.22 views

CVE-2008-6555

cgi-bin/webutil.pl in The Puppet Master WebUtil allows remote attackers to execute arbitrary commands via shell metacharacters in the dig command...

7.6AI score0.04457EPSS
Exploits1References4
Rows per page
Query Builder