Vulnerability Description
HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions for /var/log/hp and /var/log/hp/tmp, which allows local users to delete log files via standard filesystem operations.
CVSS Score
2.1
LOW
AV:L/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Linux Imaging And Printing Project | <= 3.13.1 |
Related Weaknesses (CWE)
References
- http://sourceforge.net/projects/hplip/files/hplip/3.13.2/hplip-3.13.2.tar.gz/dow
- https://bugs.launchpad.net/hplip/+bug/1016507/comments/1
- https://bugs.launchpad.net/hplip/+bug/1016507/comments/6
- https://bugzilla.redhat.com/show_bug.cgi?id=894283
- http://sourceforge.net/projects/hplip/files/hplip/3.13.2/hplip-3.13.2.tar.gz/dow
- https://bugs.launchpad.net/hplip/+bug/1016507/comments/1
- https://bugs.launchpad.net/hplip/+bug/1016507/comments/6
- https://bugzilla.redhat.com/show_bug.cgi?id=894283
FAQ
What is CVE-2012-6108?
CVE-2012-6108 is a vulnerability with a CVSS score of 2.1 (LOW). HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions for /var/log/hp and /var/log/hp/tmp, which allows local users to delete log files via standard filesystem operations...
How severe is CVE-2012-6108?
CVE-2012-6108 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-6108?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Linux Imaging And Printing Project.