CVE-2002-1796

7.8HIGH

Key Information:

Vendor: HP
Status: Chaivm
Vendor: CVE Published:; 31 December 2002

Summary

ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 does not properly verify JAR signatures for new services, which allows local users to load unauthorized Chai services.

References

http://www.phenoelit.de/stuff/HP_Chai.txt

x_refsource_MISC

http://www.securityfocus.com/bid/5334

vdb-entryx_refsource_BID

http://online.securityfocus.com/advisories/4317

vendor-advisoryx_refsource_HP

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002