[Forgot Password]
Login  Register Subscribe

24547

 
 

132763

 
 

126291

 
 

909

 
 

105100

 
 

152

 
 
Paid content will be excluded from the download.

Filter
Matches : 15424 Download | Alert*

The host is installed with Puppet 2.7.x before 2.7.21 or 3.1.x before 3.1.1 or Puppet Enterprise 2.7.x before 2.7.2 and is prone to SSL Protocol downgrade vulnerability. A flaw is present in the application, which fails to properly negotiate the SSL protocol between client and master. Successful exploitation allows remote attackers to conduct SSLv2 downgrade attacks against SSLv3 sessions via unsp ...

The host is installed with Puppet before 2.6.18, 2.7.x before 2.7.21 or 3.1.x before 3.1.1 or Puppet Enterprise before 1.2.7 or 2.7.x before 2.7.2 and is prone to arbitrary code-execution vulnerability. A flaw is present in the application, which fails to handle a crafted HTTP request. Successful exploitation allows remote authenticated users to execute arbitrary code.

The host is installed with Puppet 2.6 before 2.6.18, 2.7.x before 2.7.21 or 3.1.x before 3.1.1 or Puppet Enterprise before 1.2.7 or 2.7.x before 2.7.2 and is prone to security-bypass vulnerability. A flaw is present in the application, which fails to handle certain security restrictions. Successful exploitation allows remote authenticated users with a valid certificate and private key to read arbi ...

The host is installed with Puppet before 2.6.18, 2.7.x before 2.7.21 or 3.1.x before 3.1.1 or Puppet Enterprise before 1.2.7 or 2.7.x before 2.7.2 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to handle a crafted catalog request. Successful exploitation allows attackers to execute arbitrary code.

The host is installed with Puppet 2.6.x before 2.6.15 or 2.7.x before 2.7.13 or Puppet Enterprise 2.5.0 and is prone to arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle file bucket requests. Successful exploitation allows attackers with agent SSL keys and file-creation permissions on the puppet master to execute arbitrary commands by crea ...

The host is installed with Puppet 2.6.x before 2.6.15 or 2.7.x before 2.7.13 or Puppet Enterprise 2.5.0 and is prone to denial of service vulnerability. A flaw is present in the applications, which fail to properly handle REST requests. Successful exploitation allows attackers with agent SSL keys to corrupt the memory or filesystem.

The host is installed with Puppet 2.6.x before 2.6.15 or 2.7.x before 2.7.13 or Puppet Enterprise 2.5.0 and is prone to symlink attack. A flaw is present in the applications, which fail to properly handle REST requests for a file from a remote filebucket. Successful exploitation allows wttackers ith an authorized SSL key and certain permissions on the puppet master to read arbitrary files via a sy ...

The host is installed with Puppet 2.6.x before 2.6.14 or 2.7.x before 2.7.11 and is prone to privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle k5login type. Successful exploitation allows attackers to gain privileges via a symlink attack on .k5login.

The host is installed with Puppet 2.6.x before 2.6.14 or 2.7.x before 2.7.11 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused by the improper dropping of group permissions when a process is forked. Successful exploitation allows attackers to execute arbitrary code on the system with root privileges.

The host is installed with Ghostscript 9.21 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted PostScript document. Successful exploitation could allow attackers to crash the service.


Pages:      Start    5    6    7    8    9    10    11    12    13    14    15    16    17    18    ..   1542

© SecPod Technologies