Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.841581
Kategorie:Ubuntu Local Security Checks
Titel:Ubuntu Update for hplip USN-1981-1
Zusammenfassung:The remote host is missing an update for the 'hplip'; package(s) announced via the referenced advisory.
Beschreibung:Summary:
The remote host is missing an update for the 'hplip'
package(s) announced via the referenced advisory.

Vulnerability Insight:
It was discovered that HPLIP incorrectly handled temporary files when using
the fax capabilities. A local attacker could possibly use this issue to
overwrite arbitrary files. This issue only applied to Ubuntu 10.04 LTS.
(CVE-2011-2722)

Tim Waugh discovered that HPLIP incorrectly handled temporary files when
printing. A local attacker could possibly use this issue to overwrite
arbitrary files. In the default installation of Ubuntu 12.04 LTS and Ubuntu
12.10, this should be prevented by the Yama link restrictions.
(CVE-2013-0200)

Affected Software/OS:
hplip on Ubuntu 12.10,
Ubuntu 12.04 LTS,
Ubuntu 10.04 LTS

Solution:
Please Install the Updated Packages.

CVSS Score:
1.9

CVSS Vector:
AV:L/AC:M/Au:N/C:N/I:P/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2011-2722
http://security.gentoo.org/glsa/glsa-201203-17.xml
http://www.openwall.com/lists/oss-security/2011/07/26/14
RedHat Security Advisories: RHSA-2013:0133
http://rhn.redhat.com/errata/RHSA-2013-0133.html
http://secunia.com/advisories/48441
http://secunia.com/advisories/55083
http://www.ubuntu.com/usn/USN-1981-1
Common Vulnerability Exposure (CVE) ID: CVE-2013-0200
Debian Security Information: DSA-2829 (Google Search)
http://www.debian.org/security/2013/dsa-2829
http://www.mandriva.com/security/advisories?name=MDVSA-2013:088
http://hplipopensource.com/hplip-web/release_notes.html
CopyrightCopyright (c) 2013 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.