Lucene search
K

107 matches found

NVD
NVD
added 2014/02/15 2:57 p.m.16 views

CVE-2012-6108

HP Linux Imaging and Printing HPLIP before 3.13.2 uses world-writable permissions for /var/log/hp and /var/log/hp/tmp, which allows local users to delete log files via standard filesystem operations...

2.1CVSS6.3AI score0.00534EPSS
Exploits0References4
NVD
NVD
added 2014/01/05 8:55 p.m.20 views

CVE-2013-6402

base/pkit.py in HP Linux Imaging and Printing HPLIP through 3.13.11 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hp-pkservice.log temporary file...

2.1CVSS6AI score0.00487EPSS
Exploits0References7
OSV
OSV
added 2014/01/05 8:55 p.m.8 views

CVE-2013-6402

base/pkit.py in HP Linux Imaging and Printing HPLIP through 3.13.11 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hp-pkservice.log temporary file...

2.1CVSS6AI score0.00487EPSS
Exploits0References7
OSV
OSV
added 2014/01/05 8:55 p.m.1 views

DEBIAN-CVE-2013-6402

base/pkit.py in HP Linux Imaging and Printing HPLIP through 3.13.11 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hp-pkservice.log temporary file...

2.1CVSS6.7AI score0.00487EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2014/01/05 8:0 p.m.62 views

CVE-2013-6402

base/pkit.py in HP Linux Imaging and Printing HPLIP through 3.13.11 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hp-pkservice.log temporary file...

2.1CVSS7.7AI score0.00487EPSS
Exploits0
OSV
OSV
added 2013/12/28 12:0 a.m.23 views

DSA-2829-1 hplip - several

Bulletin has no description...

6.9CVSS6.2AI score0.03945EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/12/28 12:0 a.m.36 views

Debian Security Advisory DSA 2829-1 (hplip - several vulnerabilities)

Multiple vulnerabilities have been found in the HP Linux Printing and Imaging System: Insecure temporary files, insufficient permission checks in PackageKit and the insecure hp-upgrade service has been disabled. OpenVAS Vulnerability Test $Id: deb2829.nasl 6611 2017-07-07 12:07:20Z cfischer $...

6.9CVSS0.4AI score0.03945EPSS
Exploits1References1
NVD
NVD
added 2013/12/09 6:55 p.m.28 views

CVE-2013-6427

upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...

6.8CVSS7.2AI score0.03945EPSS
Exploits1References5
OSV
OSV
added 2013/12/09 6:55 p.m.6 views

CVE-2013-6427

upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...

7.1AI score
Exploits0References5
Cvelist
Cvelist
added 2013/12/09 6:0 p.m.31 views

CVE-2013-6427

upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...

7AI score0.03945EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2013/12/09 6:0 p.m.68 views

CVE-2013-6427

upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...

6.8CVSS8.2AI score0.03945EPSS
Exploits1
OSV
OSV
added 2013/09/23 10:18 a.m.9 views

CVE-2013-4325

The checkpermissionv1 function in base/pkit.py in HP Linux Imaging and Printing HPLIP through 3.13.9 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race conditio...

6AI score
Exploits0References7
NVD
NVD
added 2013/09/23 10:18 a.m.23 views

CVE-2013-4325

The checkpermissionv1 function in base/pkit.py in HP Linux Imaging and Printing HPLIP through 3.13.9 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race conditio...

6.9CVSS6AI score0.00419EPSS
Exploits0References7
Prion
Prion
added 2013/03/06 8:55 p.m.29 views

Design/Logic Flaw

HP Linux Imaging and Printing HPLIP through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/hpcupsfilterc.bmp, 2 /tmp/hpcupsfilterk.bmp, 3 /tmp/hpcupsjob.out, 4 /tmp/hpijs.out, or 5 /tmp/hppsjob.out temporary file, a different vulnerability than...

1.9CVSS6.7AI score0.00444EPSS
Exploits0References8Affected Software2
ATTACKERKB
ATTACKERKB
added 2013/03/06 8:55 p.m.5 views

CVE-2013-0200

HP Linux Imaging and Printing HPLIP through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/hpcupsfilterc.bmp, 2 /tmp/hpcupsfilterk.bmp, 3 /tmp/hpcupsjob.out, 4 /tmp/hpijs.out, or 5 /tmp/hppsjob.out temporary file, a different vulnerability than...

1.9CVSS5.7AI score0.00444EPSS
Exploits0References10
Cvelist
Cvelist
added 2013/03/06 8:0 p.m.22 views

CVE-2013-0200

HP Linux Imaging and Printing HPLIP through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/hpcupsfilterc.bmp, 2 /tmp/hpcupsfilterk.bmp, 3 /tmp/hpcupsjob.out, 4 /tmp/hpijs.out, or 5 /tmp/hppsjob.out temporary file, a different vulnerability than...

5.9AI score0.00379EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2013/03/06 12:0 a.m.22 views

CVE-2013-0200

HP Linux Imaging and Printing HPLIP through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/hpcupsfilterc.bmp, 2 /tmp/hpcupsfilterk.bmp, 3 /tmp/hpcupsjob.out, 4 /tmp/hpijs.out, or 5 /tmp/hppsjob.out temporary file, a different vulnerability than...

1.9CVSS6AI score0.00379EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/02/20 4:17 p.m.7 views

hplip: insecure temporary file handling

The senddatatostdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing HPLIP 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file...

1.2CVSS5.9AI score0.00444EPSS
Exploits0References4
NVD
NVD
added 2012/05/25 8:55 p.m.18 views

CVE-2011-2722

The senddatatostdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing HPLIP 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file...

1.2CVSS6AI score0.00444EPSS
Exploits0References11
OSV
OSV
added 2012/05/25 8:55 p.m.7 views

CVE-2011-2722

The senddatatostdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing HPLIP 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file...

5.9AI score
Exploits0References12
Rows per page
Query Builder