Executive Summary

Informations
NameCVE-2011-2722First vendor Publication2012-05-25
VendorCveLast vendor Modification2013-10-10

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:H/Au:N/C:N/I:P/A:N)
Cvss Base Score1.2Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityHigh
Cvss Expoit Score1.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2722

CWE : Common Weakness Enumeration

idName
CWE-59Improper Link Resolution Before File Access ('Link Following')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:20995
 
Oval ID: oval:org.mitre.oval:def:20995
Title: RHSA-2013:0133: hplip3 security and bug fix update (Low)
Description: The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.
Family: unix Class: patch
Reference(s): RHSA-2013:0133-00
CESA-2013:0133
CVE-2011-2722
Version: 4
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
Product(s): hplip3
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:23386
 
Oval ID: oval:org.mitre.oval:def:23386
Title: ELSA-2013:0133: hplip3 security and bug fix update (Low)
Description: The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.
Family: unix Class: patch
Reference(s): ELSA-2013:0133-00
CVE-2011-2722
Version: 6
Platform(s): Oracle Linux 5
Product(s): hplip3
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:27465
 
Oval ID: oval:org.mitre.oval:def:27465
Title: ELSA-2013-0133 -- hplip3 security and bug fix update (low)
Description: [3.9.8-15] - Another D-Bus fix, part of bug #501834. [3.9.8-14] - Create debugging files securely (CVE-2011-2722, bug #725830). [3.9.8-13] - Several parallel-install fixes (bug #501834). [3.9.8-12] - Applied patch to fix CVE-2010-4267, remote stack overflow vulnerability (bug #662740).
Family: unix Class: patch
Reference(s): ELSA-2013-0133
CVE-2011-2722
Version: 3
Platform(s): Oracle Linux 5
Product(s): hplip3
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application16

OpenVAS Exploits

DateDescription
2012-04-30Name : Gentoo Security Advisory GLSA 201203-17 (hplip)
File : nvt/glsa_201203_17.nasl
2012-04-02Name : Fedora Update for hplip FEDORA-2011-11116
File : nvt/gb_fedora_2011_11116_hplip_fc16.nasl
2011-09-16Name : Fedora Update for hplip FEDORA-2011-11189
File : nvt/gb_fedora_2011_11189_hplip_fc15.nasl
2011-09-12Name : Fedora Update for hplip FEDORA-2011-11199
File : nvt/gb_fedora_2011_11199_hplip_fc14.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
76797HP Linux Imaging and Printing (HPLIP) prnt/hpijs/hpcupsfax.cpp send_data_to_s...

Nessus® Vulnerability Scanner

DateDescription
2013-10-01Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-1981-1.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2013-0500.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2013-0133.nasl - Type : ACT_GATHER_INFO
2013-03-10Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2013-0500.nasl - Type : ACT_GATHER_INFO
2013-03-05Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20130221_hplip_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2013-02-21Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-0500.nasl - Type : ACT_GATHER_INFO
2013-01-17Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2013-0133.nasl - Type : ACT_GATHER_INFO
2013-01-17Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20130108_hplip3_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2013-01-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-0133.nasl - Type : ACT_GATHER_INFO
2012-03-19Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201203-17.nasl - Type : ACT_GATHER_INFO
2011-12-13Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_hplip-111019.nasl - Type : ACT_GATHER_INFO
2011-09-14Name : The remote Fedora host is missing a security update.
File : fedora_2011-11189.nasl - Type : ACT_GATHER_INFO
2011-09-12Name : The remote Fedora host is missing a security update.
File : fedora_2011-11199.nasl - Type : ACT_GATHER_INFO
2011-08-31Name : The remote Fedora host is missing a security update.
File : fedora_2011-11116.nasl - Type : ACT_GATHER_INFO

Internal Sources (Detail)

SourceUrl
CONFIRMhttp://hplipopensource.com/hplip-web/release_notes.html
https://bugs.launchpad.net/hplip/+bug/809904
https://bugzilla.novell.com/show_bug.cgi?id=704608
https://bugzilla.redhat.com/attachment.cgi?id=515866&action=diff
https://bugzilla.redhat.com/show_bug.cgi?id=725830
GENTOOhttp://security.gentoo.org/glsa/glsa-201203-17.xml
MLISThttp://www.openwall.com/lists/oss-security/2011/07/26/14
REDHAThttp://rhn.redhat.com/errata/RHSA-2013-0133.html
SECUNIAhttp://secunia.com/advisories/48441
http://secunia.com/advisories/55083
UBUNTUhttp://www.ubuntu.com/usn/USN-1981-1

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2014-02-17 11:03:39
  • Multiple Updates
2013-10-11 13:23:08
  • Multiple Updates
2013-05-10 23:03:42
  • Multiple Updates
2013-02-07 13:19:50
  • Multiple Updates