CVE-2013-0200 — LOW (1.9) — White Hats Nepal

Q: How severe is CVE-2013-0200?

CVE-2013-0200 has been rated LOW with a CVSS base score of 1.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-0200?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Linux Imaging And Printing Project, Redhat Enterprise Linux.

Vulnerability Description

HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hpcups_job#.out, (4) /tmp/hpijs_#####.out, or (5) /tmp/hpps_job#.out temporary file, a different vulnerability than CVE-2011-2722.

CVSS Score

1.9

LOW

AV:L/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Hp	Linux Imaging And Printing Project	<= 3.12.4
Redhat	Enterprise Linux	6.0

Related Weaknesses (CWE)

CWE-59

References

FAQ

What is CVE-2013-0200?

CVE-2013-0200 is a vulnerability with a CVSS score of 1.9 (LOW). HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hp...

How severe is CVE-2013-0200?

CVE-2013-0200 has been rated LOW with a CVSS base score of 1.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-0200?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Linux Imaging And Printing Project, Redhat Enterprise Linux.