CVE-2009-3564 - OpenCVE

puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

AV:L/AC:M/Au:N/C:C/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Reductivelabs	Puppet
Fedoraproject	Fedora

Configuration 1 [-]

AND

cpe:2.3:a:reductivelabs:puppet:0.24.6:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:*:*:*:*:*:*:*:*

References

Link	Resource
http://projects.reductivelabs.com/issues/1806	Patch Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=475201	Exploit Issue Tracking Third Party Advisory
https://puppet.com/security/cve/cve-2009-3564	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2009-10-06T17:22:00

Updated: 2017-12-08T10:57:01

Reserved: 2009-10-05T00:00:00

Link: CVE-2009-3564

JSON object: View

NVD Information

Status : Analyzed

Published: 2009-10-06T17:30:00.217

Modified: 2024-06-10T19:15:06.100

Link: CVE-2009-3564

JSON object: View

Redhat Information

No data.

CWE

CWE-264

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-09-11T00:00:00", "descriptions": [{"lang": "en", "value": "puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-08T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://puppet.com/security/cve/cve-2009-3564"}, {"tags": ["x_refsource_MISC"], "url": "http://projects.reductivelabs.com/issues/1806"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=475201"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-3564", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://puppet.com/security/cve/cve-2009-3564", "refsource": "CONFIRM", "url": "https://puppet.com/security/cve/cve-2009-3564"}, {"name": "http://projects.reductivelabs.com/issues/1806", "refsource": "MISC", "url": "http://projects.reductivelabs.com/issues/1806"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=475201", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=475201"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-3564", "datePublished": "2009-10-06T17:22:00", "dateReserved": "2009-10-05T00:00:00", "dateUpdated": "2017-12-08T10:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:reductivelabs:puppet:0.24.6:*:*:*:*:*:*:*", "matchCriteriaId": "B151012D-7B18-4D3F-A342-AB1198158A48", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:*:*:*:*:*:*:*:*", "matchCriteriaId": "20294CE7-12C8-43CA-A702-5ED2A3044FFC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "puppetmasterd in puppet 0.24.6 does not reset supplementary groups when it switches to a different user, which might allow local users to access restricted files."}, {"lang": "es", "value": "puppetmasterd en puppet v0.24.6 no borra los grupos adicionales cuando cambia a otro usuario, lo que permite a usuarios locales acceder a ficheros restringidos."}], "id": "CVE-2009-3564", "lastModified": "2024-06-10T19:15:06.100", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.7, "confidentialityImpact": "COMPLETE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-10-06T17:30:00.217", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://projects.reductivelabs.com/issues/1806"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=475201"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://puppet.com/security/cve/cve-2009-3564"}], "sourceIdentifier": "cve@mitre.org", "vendorComments": [{"comment": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2009-3564\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update for Red Hat Enterprise MRG may address this flaw.", "lastModified": "2009-10-08T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}