CVE-2011-2722

Currently unrated

Key Information:

Vendor: HP
Status: Linux Imaging And Printing Project
Vendor: CVE Published:; 25 May 2012

Summary

The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.

References

https://bugzilla.novell.com/show_bug.cgi?id=704608

x_refsource_CONFIRM

http://secunia.com/advisories/55083

third-party-advisoryx_refsource_SECUNIA

http://www.ubuntu.com/usn/USN-1981-1

vendor-advisoryx_refsource_UBUNTU

Timeline

Vulnerability published
May 25, 2012
Vulnerability Reserved
Jul 11, 2011