Vulnerability Description
hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership of its configuration files within home directories.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Hplip | 2.7.7 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/33539
- http://www.securityfocus.com/bid/33249Patch
- http://www.ubuntu.com/usn/usn-708-1
- https://launchpad.net/bugs/191299Exploit
- http://secunia.com/advisories/33539
- http://www.securityfocus.com/bid/33249Patch
- http://www.ubuntu.com/usn/usn-708-1
- https://launchpad.net/bugs/191299Exploit
FAQ
What is CVE-2009-0122?
CVE-2009-0122 is a vulnerability with a CVSS score of 6.9 (MEDIUM). hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP ins...
How severe is CVE-2009-0122?
CVE-2009-0122 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0122?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Hplip.