Puppet Enterprise 3.x < 3.1.2 DTLS Retransmission DoS
Medium Nessus Plugin ID 73133
SynopsisA web application on the remote host is affected by a denial of service vulnerability.
DescriptionAccording to its self-reported version number, the Puppet Enterprise 3.x install on the remote host is prior to 3.1.2. As a result, it is reportedly affected by an error related to the included OpenSSL version and DTLS retransmission processing that could allow denial of service attacks.
SolutionUpgrade to Puppet Enterprise 3.1.2 or later.