CVE-2007-5208

Currently unrated

Key Information:

Vendor: HP
Status: Linux Imaging And Printing Project
Vendor: CVE Published:; 13 October 2007

Summary

hpssd in Hewlett-Packard Linux Imaging and Printing Project (hplip) 1.x and 2.x before 2.7.10 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a from address, which is not properly handled when invoking sendmail.

References

https://www.redhat.com/archives/fedora-package-announce/2...

vendor-advisoryx_refsource_FEDORA

http://www.vupen.com/english/advisories/2007/3479

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/27271

third-party-advisoryx_refsource_SECUNIA

EPSS Score

65% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 13, 2007
Vulnerability Reserved
Oct 4, 2007