CVE-2011-3872

Published: Oct 27, 2011Modified: Apr 29, 2026

2.6

Vector

AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability: 4.9 / Impact: 2.9

Source: NVD

Description

Puppet 2.6.x before 2.6.12 and 2.7.x before 2.7.6, and Puppet Enterprise (PE) Users 1.0, 1.1, and 1.2 before 1.2.4, when signing an agent certificate, adds the Puppet master's certdnsnames values to the X.509 Subject Alternative Name field of the certificate, which allows remote attackers to spoof a Puppet master via a man-in-the-middle (MITM) attack against an agent that uses an alternate DNS name for the master, aka "AltNames Vulnerability."

Affected (24)

Products: Puppet: Puppet, Puppet Enterprise · Puppetlabs: Puppet, Puppet Enterprise Users

2 products

Puppet Enterprise

2 products

Puppet Enterprise Users

Configuration A

18 vulnerable

Vulnerable Software	Affected Versions
Puppet Puppet	Version 2.6.0
Puppet Puppet	Version 2.6.10
Puppet Puppet	Version 2.6.11
Puppet Puppet	Version 2.6.1
Puppet Puppet	Version 2.6.2
Puppet Puppet	Version 2.6.3
Puppet Puppet	Version 2.6.4
Puppet Puppet	Version 2.6.5
Puppet Puppet	Version 2.6.6
Puppet Puppet	Version 2.6.7
Puppet Puppet	Version 2.6.8
Puppet Puppet	Version 2.6.9
Puppet Puppet	Version 2.7.2
Puppet Puppet	Version 2.7.3
Puppet Puppet	Version 2.7.4
Puppet Puppet	Version 2.7.5
Puppetlabs Puppet	Version 2.7.0
Puppetlabs Puppet	Version 2.7.1

Configuration B

6 vulnerable

Vulnerable Software	Affected Versions
Puppet Puppet Enterprise	Version 1.2.0
Puppet Puppet Enterprise	Version 1.2.1
Puppet Puppet Enterprise	Version 1.2.2
Puppet Puppet Enterprise	Version 1.2.3
Puppetlabs Puppet Enterprise Users	Version 1.0
Puppetlabs Puppet Enterprise Users	Version 1.1

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (22)

http://groups.google.com/group/puppet-announce/browse_thread/thread/e7edc3a71348f3e1

Source: cve@mitre.org

Patch

http://puppetlabs.com/blog/important-security-announcement-altnames-vulnerability/

Source: cve@mitre.org

http://secunia.com/advisories/46550

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/46578

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/46934

Source: cve@mitre.org

http://secunia.com/advisories/46964

Source: cve@mitre.org

http://www.securityfocus.com/bid/50356

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-1238-1

Source: cve@mitre.org

http://www.ubuntu.com/usn/USN-1238-2

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/70970

Source: cve@mitre.org

https://puppet.com/security/cve/cve-2011-3872

Source: cve@mitre.org

http://groups.google.com/group/puppet-announce/browse_thread/thread/e7edc3a71348f3e1

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://puppetlabs.com/blog/important-security-announcement-altnames-vulnerability/

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/46550

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/46578

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/46934

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/46964

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/50356

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1238-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1238-2

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/70970

Source: af854a3a-2127-422b-91ae-364da2661108

https://puppet.com/security/cve/cve-2011-3872

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.