CVE-2012-1054 | Vulnerability Database | Aqua Security

Puppet 2.6.x before 2.6.14 and 2.7.x before 2.7.11, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x before 2.0.3, when managing a user login file with the k5login resource type, allows local users to gain privileges via a symlink attack on .k5login.

Affected Software

Name	Vendor	Start Version	End Version
Puppet	Puppet	2.6.0 (including)	2.6.0 (including)
Puppet	Puppet	2.6.1 (including)	2.6.1 (including)
Puppet	Puppet	2.6.2 (including)	2.6.2 (including)
Puppet	Puppet	2.6.3 (including)	2.6.3 (including)
Puppet	Puppet	2.6.4 (including)	2.6.4 (including)
Puppet	Puppet	2.6.5 (including)	2.6.5 (including)
Puppet	Puppet	2.6.6 (including)	2.6.6 (including)
Puppet	Puppet	2.6.7 (including)	2.6.7 (including)
Puppet	Puppet	2.6.8 (including)	2.6.8 (including)
Puppet	Puppet	2.6.9 (including)	2.6.9 (including)
Puppet	Puppet	2.6.10 (including)	2.6.10 (including)
Puppet	Puppet	2.6.11 (including)	2.6.11 (including)
Puppet	Puppet	2.6.12 (including)	2.6.12 (including)
Puppet	Puppet	2.6.13 (including)	2.6.13 (including)

References

http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00003.html
http://projects.puppetlabs.com/issues/12460
http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.14
http://puppetlabs.com/security/cve/cve-2012-1054/
http://secunia.com/advisories/48157
http://secunia.com/advisories/48161
http://secunia.com/advisories/48166
http://secunia.com/advisories/48290
http://ubuntu.com/usn/usn-1372-1
http://www.debian.org/security/2012/dsa-2419
http://www.osvdb.org/79496
http://www.securityfocus.com/bid/52158
https://exchange.xforce.ibmcloud.com/vulnerabilities/73446
https://hermes.opensuse.org/messages/15087408

NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-1054
CWE	https://cwe.mitre.org/data/definitions/264.html