← voltar
CVE-2013-0200

CVE-2013-0200

EPSS 0.4%
HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hpcups_job#.out, (4) /tmp/hpijs_#####.out, or (5) /tmp/hpps_job#.out temporary file, a different vulnerability than CVE-2011-2722.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
ftp://ftp.scientificlinux.org/linux/scientific/6x/SRPMS/vendor/hplip-3.12.4-4.el6.src.rpmhttp://hplipopensource.com/hplip-web/release_notes.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=902163http://secunia.com/advisories/55083https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0072http://www.debian.org/security/2013/dsa-2829http://www.mandriva.com/security/advisories?name=MDVSA-2013:088http://www.ubuntu.com/usn/USN-1981-1