CVE-2012-1906

Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 uses predictable file names when installing Mac OS X packages from a remote source, which allows local users to overwrite arbitrary files or install arbitrary packages via a symlink attack on a temporary file in /tmp.

Published: May 29, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-1906
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.3
AV:L/AC:M/Au:N/C:N/I:P/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
puppet / puppet	2.6.0	2.6.0.x
puppet / puppet	2.6.1	2.6.1.x
puppet / puppet	2.6.2	2.6.2.x
puppet / puppet	2.6.3	2.6.3.x
puppet / puppet	2.6.4	2.6.4.x
puppet / puppet	2.6.5	2.6.5.x
puppet / puppet	2.6.6	2.6.6.x
puppet / puppet	2.6.7	2.6.7.x
puppet / puppet	2.6.8	2.6.8.x
puppet / puppet	2.6.9	2.6.9.x
puppet / puppet	2.6.10	2.6.10.x
puppet / puppet	2.6.11	2.6.11.x
puppet / puppet	2.6.12	2.6.12.x
puppet / puppet	2.6.13	2.6.13.x
puppet / puppet	2.6.14	2.6.14.x
puppetlabs / puppet	2.7.0	2.7.0.x
puppetlabs / puppet	2.7.1	2.7.1.x
puppet / puppet	2.7.2	2.7.2.x
puppet / puppet	2.7.3	2.7.3.x
puppet / puppet	2.7.4	2.7.4.x
puppet / puppet	2.7.5	2.7.5.x
puppet / puppet	2.7.6	2.7.6.x
puppet / puppet	2.7.7	2.7.7.x
puppet / puppet	2.7.8	2.7.8.x
puppet / puppet	2.7.9	2.7.9.x
puppet / puppet	2.7.10	2.7.10.x
puppet / puppet	2.7.11	2.7.11.x
puppet / puppet_enterprise	2.5.0	2.5.0.x
puppetlabs / puppet_enterprise_users	1.0	1.0.x
puppetlabs / puppet_enterprise_users	1.1	1.1.x
puppet / puppet_enterprise	1.2.0	1.2.0.x
puppet / puppet_enterprise	2.0.0	2.0.0.x
puppet / puppet_enterprise	2.0.1	2.0.1.x
puppet / puppet_enterprise	2.0.2	2.0.2.x
puppet / puppet_enterprise	1.2.1	1.2.1.x
puppet / puppet_enterprise	1.2.2	1.2.2.x
puppet / puppet_enterprise	1.2.3	1.2.3.x
puppet / puppet_enterprise	1.2.4	1.2.4.x

Vulnerability Database

289,599

CVE-2012-1906