Computer Security
[EN] securityvulns.ru no-pyccku


puppet symbolic links vulnerability
Published:08.01.2014
Source:
SecurityVulns ID:13480
Type:local
Threat Level:
5/10
Description:Symbolic links vulnerability on temporary files creation.
CVE:CVE-2013-4969 (Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise (PE) before 2.8.4 and 3.1 before 3.1.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified files.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2831-1] puppet security update (08.01.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod