Lucene search
K
HpLinux Imaging And Printing Project

11 matches found

CVE
CVE
•added 2008/08/14 8:0 p.m.•98 views

CVE-2008-2940

CVE-2008-2940 affects HP Linux Imaging and Printing (HPLIP) 1.6.7. The vulnerability lies in the alert-mailing functionality, allowing a local attacker to gain privileges and send e-mail messages from the root account by sending crafted packets, with root emails triggered by the alert mechanism a...

7.2CVSS6.1AI score0.00434EPSS
CVE
CVE
•added 2013/03/06 8:0 p.m.•92 views

CVE-2013-0200

CVE-2013-0200 affects HP Linux Imaging and Printing (HPLIP) up to version 3.12.4. The vulnerability allows local attackers to overwrite arbitrary files via a symlink attack on temporary files such as /tmp/hpcupsfilterc_#.bmp, /tmp/hpcupsfilterk_#.bmp, /tmp/hpcups_job#.out, /tmp/hpijs_#####.out, o...

1.9CVSS6AI score0.00379EPSS
CVE
CVE
•added 2011/01/20 6:0 p.m.•86 views

CVE-2010-4267

CVE-2010-4267 affects the Hewlett-Packard Linux Imaging and Printing (HPLIP) project, specifically the hpmud_get_pml function in io/hpmud/pml.c. The stack-based buffer overflow is exploitable by remote attackers via a crafted SNMP response with a large length value, allowing a denial of service a...

7.5CVSS7.8AI score0.10806EPSS
CVE
CVE
•added 2013/09/23 10:0 a.m.•85 views

CVE-2013-4325

CVE-2013-4325 affects HP Linux Printing and Imaging (HPLIP) up to version 3.13.9, where a Polkit race between PolkitUnixProcess and a polkit authority can allow a local user to bypass access restrictions via a setuid process or pkexec. Related advisories/bulletins indicate the fix requires upgrad...

6.9CVSS5.9AI score0.00419EPSS
CVE
CVE
•added 2012/05/25 8:0 p.m.•82 views

CVE-2011-2722

CVE-2011-2722 : In HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10, the send_data_to_stdout path in prnt/hpijs/hpcupsfax.cpp allows local users to overwrite arbitrary files via a symlink attack on /tmp/hpcupsfax.out. This yields a local, low–to–moderate impact with possible partial integ...

1.2CVSS5.9AI score0.00444EPSS
CVE
CVE
•added 2007/10/13 12:0 a.m.•80 views

CVE-2007-5208

CVE-2007-5208 affects the HP Linux Imaging and Printing Project (HPLIP) hpssd daemon. Affected: hplip 1.x and 2.x before 2.7.10. Description from multiple sources indicates that input handling of the From address during sendmail invocation allows context-dependent attackers to execute arbitrary c...

7.6CVSS7AI score0.67264EPSS
Web
CVE
CVE
•added 2014/01/05 8:0 p.m.•80 views

CVE-2013-6402

CVE-2013-6402 affects HP HPLIP (base/pkit.py) up through 3.13.11, enabling local attackers to overwrite arbitrary files via a symlink attack on /tmp/hp-pkservice.log. Connected advisories confirm a fix was released in multiple distributions (openSUSE, Mageia, etc.) and instruct upgrading HPLIP pa...

2.1CVSS6.1AI score0.00487EPSS
CVE
CVE
•added 2011/07/29 8:0 p.m.•75 views

CVE-2011-2697

CVE-2011-2697 affects foomatic-rip-hplip in HP Linux Imaging and Printing (HPLIP) 3.11.5. A remote attacker can trigger arbitrary code execution via a crafted FoomaticRIPCommandLine field in a .ppd file due to an input sanitization flaw in the r ip filter. Impact is remote code execution with the...

6.8CVSS5.8AI score0.10795EPSS
CVE
CVE
•added 2013/12/09 6:0 p.m.•73 views

CVE-2013-6427

The CVE-2013-6427 vulnerability affects HP Linux Imaging and Printing (HPLIP) with the hp-upgrade service in 3.x up to 3.13.11, where upgrade.py launches a program from an http URL, enabling a man-in-the-middle attacker to execute arbitrary code by controlling the client–server data stream. Open-...

6.8CVSS7.2AI score0.03945EPSS
CVE
CVE
•added 2008/08/14 8:0 p.m.•61 views

CVE-2008-2941

CVE-2008-2941 is tied to the hpssd message parser in HP Linux Imaging and Printing (HPLIP) 1.6.7. A local attacker can cause a denial of service by sending specially crafted packets to TCP port 2207, stopping the hpssd process. The issue is documented across multiple advisories (e.g., RHSA-2008:0...

4.9CVSS5.7AI score0.00542EPSS
CVE
CVE
•added 2014/02/15 11:0 a.m.•42 views

CVE-2012-6108

HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions on /var/log/hp and /var/log/hp/tmp, enabling local users to delete log files via standard filesystem operations. Affected product: HPLIP; root cause: improper permissions on log directories. Practical impact: loca...

2.1CVSS6.5AI score0.00534EPSS