Ubuntu Security Notice (C) 2011-2013 Canonical, Inc. / NASL script (C) 2011-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing a security-related patch.
Kristian Erik Hermansen discovered a directory traversal vulnerability
in the SSLFile indirection base class. A remote attacker could exploit
this to overwrite files with the privileges of the Puppet Master.
Update the affected puppet-common package.
Risk factor :
Medium / CVSS Base Score : 5.0
Family: Ubuntu Local Security Checks
Nessus Plugin ID: 56332 ()
CVE ID: CVE-2011-3848