CVE-2012-3867 — MEDIUM (4.3)

Q: How severe is CVE-2012-3867?

CVE-2012-3867 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2012-3867?

Check the references section above for vendor advisories and patch information. Affected products include: Puppet Puppet, Puppetlabs Puppet, Debian Debian Linux, Canonical Ubuntu Linux, Opensuse Opensuse.

Vulnerability Description

lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, does not properly restrict the characters in the Common Name field of a Certificate Signing Request (CSR), which makes it easier for user-assisted remote attackers to trick administrators into signing a crafted agent certificate via ANSI control sequences.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Puppet	Puppet	2.6.0
Puppetlabs	Puppet	<= 2.6.16
Debian	Debian Linux	6.0
Canonical	Ubuntu Linux	10.04
Opensuse	Opensuse	11.4
Suse	Linux Enterprise Desktop	11
Suse	Linux Enterprise Server	11
Puppet	Puppet Enterprise	<= 2.5.1

Related Weaknesses (CWE)

CWE-264

References

http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00006.htmlThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2012-07/msg00036.htmlThird Party Advisory
http://puppetlabs.com/security/cve/cve-2012-3867/Vendor Advisory
http://secunia.com/advisories/50014
http://www.debian.org/security/2012/dsa-2511Third Party Advisory
http://www.ubuntu.com/usn/USN-1506-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=839158Issue Tracking
https://github.com/puppetlabs/puppet/commit/dfedaa5fa841ccf335245a748b347b7c7c23ExploitIssue TrackingPatch
https://github.com/puppetlabs/puppet/commit/f3419620b42080dad3b0be14470b20a972f1ExploitIssue TrackingPatch
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00006.htmlThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2012-07/msg00036.htmlThird Party Advisory
http://puppetlabs.com/security/cve/cve-2012-3867/Vendor Advisory
http://secunia.com/advisories/50014
http://www.debian.org/security/2012/dsa-2511Third Party Advisory
http://www.ubuntu.com/usn/USN-1506-1Third Party Advisory

FAQ

What is CVE-2012-3867?

CVE-2012-3867 is a vulnerability with a CVSS score of 4.3 (MEDIUM). lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, does not properly restrict the characters in the Common Name field of a Cer...

How severe is CVE-2012-3867?

CVE-2012-3867 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-3867?

Check the references section above for vendor advisories and patch information. Affected products include: Puppet Puppet, Puppetlabs Puppet, Debian Debian Linux, Canonical Ubuntu Linux, Opensuse Opensuse.