File Overwrite Vulnerability in HP Linux Imaging and Printing by HP
CVE-2011-2722

Currently unrated

Key Information:

Vendor: HP
Status: Linux Imaging And Printing Project
Vendor: CVE Published:; 25 May 2012

What is CVE-2011-2722?

A vulnerability exists in the HP Linux Imaging and Printing (HPLIP) software that can allow local users to perform a symlink attack on the temporary file /tmp/hpcupsfax.out. This flaw can result in the overwriting of arbitrary files, posing significant risks to system integrity and data confidentiality.

References

https://bugzilla.novell.com/show_bug.cgi?id=704608

x_refsource_CONFIRM

http://secunia.com/advisories/55083

third-party-advisoryx_refsource_SECUNIA

http://www.ubuntu.com/usn/USN-1981-1

vendor-advisoryx_refsource_UBUNTU

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 25, 2012
Vulnerability Reserved
Jul 11, 2011