CVE-2012-1989 — Puppet allows local users to overwrite arbitrary files via a symlink attack

Description

telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise (PE) 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows local users to overwrite arbitrary files via a symlink attack on the NET::Telnet connection log (/tmp/out.log).

How to fix CVE-2012-1989

To remediate CVE-2012-1989, upgrade the affected package to a fixed version below.

Debian/puppet—upgrade to 2.7.13-1 or later
RubyGems/puppet—upgrade to 2.7.13 or later

Is CVE-2012-1989 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 2.7.13-1
>= 2.7.1, < 2.7.13

References (13)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2012-1989
ADVISORYsecurity-tracker.debian.org/tracker/CVE-2012-1989
PATCHgithub.com/puppetlabs/puppet
WEBlists.opensuse.org/opensuse-updates/2012-05/msg00012.html
WEB