Lucene search

MitreCVE-2002-1797

HistoryJun 28, 2005 - 4:00 a.m.

CVE-2002-1797

2005-06-2804:00:00

mitre

web.nvd.nist.gov

cve-2002-1797

chaivm

hp color laserjet

hp laserjet

access control

local users

security vulnerability

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

ChaiVM for HP color LaserJet 4500 and 4550 or HP LaserJet 4100 and 8150 does not properly enforce access control restrictions, which could allow local users to add, delete, or modify any services hosted by the ChaiServer.

Affected configurations

Nvd

Node

hpchaivm

VendorProductVersionCPE
hpchaivm*cpe:2.3:a:hp:chaivm:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hp	chaivm	*	cpe:2.3:a:hp:chaivm::::::::

References

online.securityfocus.com/archive/1/284648

www.iss.net/security_center/static/9694.php

www.phenoelit.de/stuff/HP_Chai.txt

www.securityfocus.com/bid/5332

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-1797