Lucene search

[email protected]CVE-2013-0200

HistoryMar 06, 2013 - 8:55 p.m.

CVE-2013-0200

2013-03-0620:55:01

CWE-59

[email protected]

web.nvd.nist.gov

hplip

symlink attack

local file overwrite

cve-2013-0200

nvd

linux

printing

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hpcups_job#.out, (4) /tmp/hpijs_#####.out, or (5) /tmp/hpps_job#.out temporary file, a different vulnerability than CVE-2011-2722.

Affected configurations

NVD

Node

hplinux_imaging_and_printing_projectRange≤3.12.4

hplinux_imaging_and_printing_projectMatch1.0

hplinux_imaging_and_printing_projectMatch2.0

hplinux_imaging_and_printing_projectMatch2.7.10

hplinux_imaging_and_printing_projectMatch3.9.2

hplinux_imaging_and_printing_projectMatch3.9.4

hplinux_imaging_and_printing_projectMatch3.9.4b

hplinux_imaging_and_printing_projectMatch3.9.6

hplinux_imaging_and_printing_projectMatch3.9.8

hplinux_imaging_and_printing_projectMatch3.9.10

hplinux_imaging_and_printing_projectMatch3.9.12

hplinux_imaging_and_printing_projectMatch3.10.2

hplinux_imaging_and_printing_projectMatch3.10.5

hplinux_imaging_and_printing_projectMatch3.10.6

hplinux_imaging_and_printing_projectMatch3.10.9

hplinux_imaging_and_printing_projectMatch3.11.1

hplinux_imaging_and_printing_projectMatch3.11.3

hplinux_imaging_and_printing_projectMatch3.11.3a

hplinux_imaging_and_printing_projectMatch3.11.5

hplinux_imaging_and_printing_projectMatch3.11.7

hplinux_imaging_and_printing_projectMatch3.11.10

Node

redhatenterprise_linuxMatch6.0

CPENameOperatorVersion
hp:linux_imaging_and_printing_projecthp linux imaging and printing projectle3.12.4
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq1.0
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq2.0
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq2.7.10
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.2
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.4
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.4b
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.6
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.8
hp:linux_imaging_and_printing_projecthp linux imaging and printing projecteq3.9.10

CPE	Name	Operator	Version
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	le	3.12.4
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	1.0
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	2.0
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	2.7.10
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.2
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.4
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.4b
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.6
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.8
hp:linux_imaging_and_printing_project	hp linux imaging and printing project	eq	3.9.10