Local unauthorized access to managed resources
A potential security vulnerability has been identified with HP Web Jetadmin running on Windows. The vulnerability could be exploited by a local user to gain unauthorized access to resources managed by Web Jetadmin.
VULNERABILITY SUMMARY
Reference
|
Base Vector
|
Base Score
|
CVE-2011-0278
|
(AV:L/AC:L/Au:S/C:P/I:P/A:P)
|
4.3
|
note:Until HP Web Jetadmin v10.2 Service Release 5 or subsequent is installed, the following recommendations can work around the vulnerability. These recommendations are worthwhile even after the update is installed.Administrators should ensure that HP Web Jetadmin application features are secured from unauthorized access and the server hosting HP Web Jetadmin is secured from unauthorized access.
PI
|
HP Printing and Imaging
|
HF
|
HP Hardware and Firmware
|
GN
|
HP General Software
|