CVE-2008-2940

Currently unrated

Key Information:

Vendor: HP
Status: Linux Imaging And Printing Project
Vendor: CVE Published:; 14 August 2008

Summary

The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/44441

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/30683

vdb-entryx_refsource_BID

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Timeline

Vulnerability published
Aug 14, 2008
Vulnerability Reserved
Jun 30, 2008