Lucene search

[email protected]CVE-2013-6402

HistoryJan 05, 2014 - 8:55 p.m.

CVE-2013-6402

2014-01-0520:55:04

CWE-59

[email protected]

web.nvd.nist.gov

linux

imaging

printing

hplip

cve-2013-6402

symlink attack

security vulnerability

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hp-pkservice.log temporary file.

Affected configurations

NVD

Node

hplinux_imaging_and_printing_projectRange≤3.13.11

hplinux_imaging_and_printing_projectMatch3.9.2

hplinux_imaging_and_printing_projectMatch3.9.4

hplinux_imaging_and_printing_projectMatch3.9.4b

hplinux_imaging_and_printing_projectMatch3.9.6

hplinux_imaging_and_printing_projectMatch3.9.8

hplinux_imaging_and_printing_projectMatch3.9.10

hplinux_imaging_and_printing_projectMatch3.9.12

hplinux_imaging_and_printing_projectMatch3.10.2

hplinux_imaging_and_printing_projectMatch3.10.5

hplinux_imaging_and_printing_projectMatch3.10.6

hplinux_imaging_and_printing_projectMatch3.10.9

hplinux_imaging_and_printing_projectMatch3.11.1

hplinux_imaging_and_printing_projectMatch3.11.3

hplinux_imaging_and_printing_projectMatch3.11.3a

hplinux_imaging_and_printing_projectMatch3.11.5

hplinux_imaging_and_printing_projectMatch3.11.7

hplinux_imaging_and_printing_projectMatch3.11.10

hplinux_imaging_and_printing_projectMatch3.11.12

hplinux_imaging_and_printing_projectMatch3.12.2

hplinux_imaging_and_printing_projectMatch3.12.4

hplinux_imaging_and_printing_projectMatch3.12.6

hplinux_imaging_and_printing_projectMatch3.12.9

hplinux_imaging_and_printing_projectMatch3.12.10

hplinux_imaging_and_printing_projectMatch3.12.10a

hplinux_imaging_and_printing_projectMatch3.12.11

hplinux_imaging_and_printing_projectMatch3.13.2

hplinux_imaging_and_printing_projectMatch3.13.3

hplinux_imaging_and_printing_projectMatch3.13.4

hplinux_imaging_and_printing_projectMatch3.13.5

hplinux_imaging_and_printing_projectMatch3.13.6

hplinux_imaging_and_printing_projectMatch3.13.7

hplinux_imaging_and_printing_projectMatch3.13.8

hplinux_imaging_and_printing_projectMatch3.13.9

hplinux_imaging_and_printing_projectMatch3.13.10

CPENameOperatorVersion
hp:linux_imaging_and_printing_projecthp linux imaging and printing projectle3.13.11
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.2
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.4
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.4b
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.6
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.8
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.10
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.12
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.10.2
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.10.5

CPE	Name	Operator	Version
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	le	3.13.11
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.2
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.4
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.4b
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.6
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.8
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.10
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.12
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.10.2
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.10.5