Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2011-3872 PoC — Puppet ‘certdnsnames’ 安全绕过漏洞

Source
https://github.com/puppetlabs-toy-chest/puppetlabs-cve20113872
Associated Vulnerability
Title:Puppet ‘certdnsnames’ 安全绕过漏洞 (CVE-2011-3872)
Description:Puppet 0.24.0至2.7.5版本中存在安全绕过漏洞。由于应用程序未能正确验证服务器的SSL证书,攻击者可利用该漏洞执行中间人攻击或者冒充受信任的服务器,并引起进一步攻击。
Description
Puppet Module to help fix and migrate a Puppet deployment (CVE-2011-3872)
File Snapshot

 [4.0K]  /data/pocs/dc4392fb5d866ea47ea22524601d7725611715d7
├── [4.0K]  bin
│   ├── [6.5K]  check_progress
│   ├── [ 727]  pe_restore_original_state
│   ├── [5.7K]  pe_step1_enable_intermediate_dns_name
│   ├── [3.8K]  pe_step2_configure_agents_for_intermediate_dns_name
│   ├── [4.8K]  pe_step3_generate_new_authority
│   ├── [2.0K]  pe_step4_migrate_agents_to_new_authority
│   ├── [5.8K]  pe_step5_migrate_the_master
│   ├── [4.4K]  scan_certs
│   └── [4.0K]  webrick
│       ├── [6.1K]  check_progress
│       ├── [4.0K]  scan_certs
│       ├── [ 745]  webrick_restore_original_state
│       ├── [5.2K]  webrick_step1_enable_intermediate_dns_name
│       ├── [4.1K]  webrick_step2_configure_agents_for_intermediate_dns_name
│       ├── [6.2K]  webrick_step3_generate_new_authority
│       ├── [2.0K]  webrick_step4_migrate_agents_to_new_authority
│       └── [3.6K]  webrick_step5_migrate_the_master
├── [1.2K]  CHANGELOG
├── [4.0K]  lib
│   ├── [4.0K]  facter
│   │   ├── [1.4K]  agent_cert.rb
│   │   ├── [  56]  agent_pid.rb
│   │   ├── [ 789]  agent_settings.rb
│   │   ├── [ 820]  fact_is_migration_host.rb
│   │   └── [4.0K]  util
│   │       ├── [4.1K]  puppet_certificate.rb
│   │       └── [ 513]  with_puppet.rb
│   └── [4.0K]  puppet
│       └── [4.0K]  parser
│           └── [4.0K]  functions
│               ├── [1.6K]  cve20113872_store_progress.rb
│               └── [1.1K]  cve20113872_validate_re.rb
├── [ 11K]  LICENSE
├── [4.0K]  manifests
│   ├── [ 209]  common.pp
│   ├── [2.1K]  init.pp
│   ├── [3.4K]  step2.pp
│   └── [5.9K]  step4.pp
├── [ 512]  Modulefile
├── [ 670]  Rakefile
├── [ 15K]  README-detailed.markdown
├── [3.0K]  README.markdown
├── [5.0K]  README-ssh-only.markdown
├── [4.0K]  spec
│   ├── [4.0K]  lib
│   │   └── [4.0K]  puppet_spec
│   │       ├── [1.3K]  files.rb
│   │       ├── [ 882]  fixtures.rb
│   │       ├── [2.0K]  matchers.rb
│   │       └── [ 207]  verbose.rb
│   ├── [4.0K]  monkey_patches
│   │   ├── [ 151]  alias_should_to_must.rb
│   │   └── [ 371]  publicize_methods.rb
│   ├── [2.6K]  spec_helper.rb
│   ├── [  47]  spec.opts
│   ├── [4.0K]  unit
│   │   └── [4.0K]  facter
│   │       └── [4.1K]  agent_cert_spec.rb
│   └── [1.8K]  watchr.rb
└── [4.0K]  templates
    ├── [2.4K]  disable_revocation.rb
    └── [2.2K]  reconfigure_server.rb

16 directories, 47 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.