Directory Traversal Vulnerability in HP Managed Printing Administration
CVE-2011-4166

Currently unrated

Key Information:

Vendor: HP
Status: Managed Printing Administration
Vendor: CVE Published:; 27 December 2011

What is CVE-2011-4166?

A directory traversal vulnerability exists in the HP Managed Printing Administration that allows remote attackers to create arbitrary files. This is achievable through the manipulation of crafted form data. Attackers can exploit this flaw in versions prior to 2.6.4, potentially leading to unauthorized actions on the underlying system and posing significant security risks.

References

http://www.zerodayinitiative.com/advisories/ZDI-11-352/

x_refsource_MISC

http://h20000.www2.hp.com/bizsupport/TechSupport/Document...

vendor-advisoryx_refsource_HP

http://h20000.www2.hp.com/bizsupport/TechSupport/Document...

vendor-advisoryx_refsource_HP

EPSS Score

71% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 27, 2011