The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x prior to 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp linux imaging and printing project 3.9.6 |
||
hp linux imaging and printing project 3.10.6 |
||
hp linux imaging and printing project 3.11.1 |
||
hp linux imaging and printing project 3.11.3a |
||
hp linux imaging and printing project 3.9.4b |
||
hp linux imaging and printing project 3.9.12 |
||
hp linux imaging and printing project 3.9.4 |
||
hp linux imaging and printing project 3.9.10 |
||
hp linux imaging and printing project 3.10.9 |
||
hp linux imaging and printing project 3.9.8 |
||
hp linux imaging and printing project 3.10.5 |
||
hp linux imaging and printing project 3.11.3 |
||
hp linux imaging and printing project 3.9.2 |
||
hp linux imaging and printing project 3.10.2 |
||
hp linux imaging and printing project |
||
hp linux imaging and printing project 3.11.7 |