CVE-2012-3408 - OpenCVE

lib/puppet/network/authstore.rb in Puppet before 2.7.18, and Puppet Enterprise before 2.5.2, supports use of IP addresses in certnames without warning of potential risks, which might allow remote attackers to spoof an agent by acquiring a previously used IP address.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:H/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Puppetlabs	Puppet
Puppet	Puppet Enterprise

Configuration 1 [-]

OR	cpe:2.3:a:puppet:puppet_enterprise::::::::
	cpe:2.3:a:puppetlabs:puppet::::::::

References

Link	Resource
http://puppetlabs.com/security/cve/cve-2012-3408/	Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=839166	Third Party Advisory
https://github.com/puppetlabs/puppet/commit/ab9150baa1b738467a33b01df1d90e076253fbbd	Exploit Patch Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2012-08-06T16:00:00Z

Updated: 2012-08-06T16:00:00Z

Reserved: 2012-06-14T00:00:00Z

Link: CVE-2012-3408

JSON object: View

NVD Information

Status : Analyzed

Published: 2012-08-06T16:55:05.133

Modified: 2022-01-24T16:46:02.250

Link: CVE-2012-3408

JSON object: View

Redhat Information

No data.

CWE

CWE-287

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*", "matchCriteriaId": "346F9C04-73F0-4244-9086-C16C981C92D1", "versionEndExcluding": "2.5.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:puppetlabs:puppet:*:*:*:*:*:*:*:*", "matchCriteriaId": "05782A68-DC7C-49D0-847A-F64A5C9F7DDB", "versionEndExcluding": "2.7.18", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "lib/puppet/network/authstore.rb in Puppet before 2.7.18, and Puppet Enterprise before 2.5.2, supports use of IP addresses in certnames without warning of potential risks, which might allow remote attackers to spoof an agent by acquiring a previously used IP address."}, {"lang": "es", "value": "lib/puppet/network/authstore.rb en Puppet anterior a v2.7.18, y Puppet Enterprise anterior a v2.5.2, compatible con el uso de direcciones IP en certnames sin previo aviso de los riesgos potenciales, podr\u00edan permitir a atacantes remotos falsificar un agente mediante la adquisici\u00f3n de una direcci\u00f3n IP previamente utilizada."}], "id": "CVE-2012-3408", "lastModified": "2022-01-24T16:46:02.250", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-08-06T16:55:05.133", "references": [{"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://puppetlabs.com/security/cve/cve-2012-3408/"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=839166"}, {"source": "secalert@redhat.com", "tags": ["Exploit", "Patch", "Third Party Advisory"], "url": "https://github.com/puppetlabs/puppet/commit/ab9150baa1b738467a33b01df1d90e076253fbbd"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}