1079 matches found
CVE-2009-0122
hplip.postinst in HP Linux Imaging and Printing HPLIP 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership...
Remote code execution
The GdPicture 1 Light Imaging Toolkit 4.7.1 GdPicture4S.Imaging ActiveX control gdpicture4s.ocx 4.7.0.1 and 2 Pro Imaging SDK 5.7.1 GdPicturePro5S.Imaging ActiveX control gdpicturepro5s.ocx 5.7.0.1 allows remote attackers to create, overwrite, and modify arbitrary files via the SaveAsPDF method...
CVE-2008-4453
The CVE-2008-4453 issue affects GdPicture Pro Imaging SDK 5.7.1 (GdPicturePro5S.Imaging) and GdPicture Light Imaging Toolkit 4.7.1 (GdPicture4S.Imaging) ActiveX controls (gdpicture4s.ocx, gdpicturepro5s.ocx). The SaveAsPDF method fails to validate input to the sFilePath parameter, enabling remote...
CVE-2008-4453
The GdPicture 1 Light Imaging Toolkit 4.7.1 GdPicture4S.Imaging ActiveX control gdpicture4s.ocx 4.7.0.1 and 2 Pro Imaging SDK 5.7.1 GdPicturePro5S.Imaging ActiveX control gdpicturepro5s.ocx 5.7.0.1 allows remote attackers to create, overwrite, and modify arbitrary files via the SaveAsPDF method...
Information disclosure
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
CVE-2008-2940
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
Code injection
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to cause a denial of service process stop via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207...
CVE-2008-2940
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
CVE-2008-2941
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to cause a denial of service process stop via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207...
DEBIAN-CVE-2008-2940
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
CVE-2008-2940
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
CVE-2008-2940
CVE-2008-2940 affects HP Linux Imaging and Printing (HPLIP) 1.6.7. The vulnerability lies in the alert-mailing functionality, allowing a local attacker to gain privileges and send e-mail messages from the root account by sending crafted packets, with root emails triggered by the alert mechanism a...
CVE-2008-2940
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
CVE-2008-2940
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
hplip hpssd.py Denial-Of-Service parsing vulnerability
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to cause a denial of service process stop via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207...
hpssd of hplip allows unprivileged user to trigger alert mail
The alert-mailing implementation in HP Linux Imaging and Printing HPLIP 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message...
CVE-2008-3209
Heap-based buffer overflow in the OpenGifFile function in BiGif.dll in Black Ice Document Imaging SDK 10.95 allows remote attackers to execute arbitrary code via a long string argument to the GetNumberOfImagesInGifFile method in the BIImgFrm Control ActiveX control in biimgfrm.ocx. NOTE: some of...
Heap overflow
Heap-based buffer overflow in the OpenGifFile function in BiGif.dll in Black Ice Document Imaging SDK 10.95 allows remote attackers to execute arbitrary code via a long string argument to the GetNumberOfImagesInGifFile method in the BIImgFrm Control ActiveX control in biimgfrm.ocx. NOTE: some of...
CVE-2008-3209
CVE-2008-3209 describes a heap-based buffer overflow in the OpenGifFile function of BiGif.dll within Black Ice Document Imaging SDK 10.95. An attacker can exploit this by passing a long string to the GetNumberOfImagesInGifFile method of the BIImgFrm Control ActiveX biimgfrm.ocx, allowing remote c...
CVE-2008-3209
Heap-based buffer overflow in the OpenGifFile function in BiGif.dll in Black Ice Document Imaging SDK 10.95 allows remote attackers to execute arbitrary code via a long string argument to the GetNumberOfImagesInGifFile method in the BIImgFrm Control ActiveX control in biimgfrm.ocx. NOTE: some of...