CVE-2008-2940 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-2940
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2940

Description: The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/44441 UBUNTU http://www.ubuntu.com/usn/USN-674-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.html ST 1020684 SAID Secunia Advisory: SA31470 Secunia Advisory: SA31499 Secunia Advisory: SA32316 Secunia Advisory: SA32792 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0818.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:169 CONFIRM BID 30683

Return to the previous page.