CVE-2013-0200

HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hpcups_job#.out, (4) /tmp/hpijs_#####.out, or (5) /tmp/hpps_job#.out temporary file, a different vulnerability than CVE-2011-2722.
Link Following
Severity
UNKNOWN
AV:L/AC:M/Au:N/C:N/I:P/A:N
Atk. Vector
LOCAL
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
VendorProductVersion
hplinux_imaging_and_printing_project
𝑥
≤ 3.12.4
hplinux_imaging_and_printing_project
1.0
hplinux_imaging_and_printing_project
2.0
hplinux_imaging_and_printing_project
2.7.10
hplinux_imaging_and_printing_project
3.9.2
hplinux_imaging_and_printing_project
3.9.4
hplinux_imaging_and_printing_project
3.9.4b
hplinux_imaging_and_printing_project
3.9.6
hplinux_imaging_and_printing_project
3.9.8
hplinux_imaging_and_printing_project
3.9.10
hplinux_imaging_and_printing_project
3.9.12
hplinux_imaging_and_printing_project
3.10.2
hplinux_imaging_and_printing_project
3.10.5
hplinux_imaging_and_printing_project
3.10.6
hplinux_imaging_and_printing_project
3.10.9
hplinux_imaging_and_printing_project
3.11.1
hplinux_imaging_and_printing_project
3.11.3
hplinux_imaging_and_printing_project
3.11.3a
hplinux_imaging_and_printing_project
3.11.5
hplinux_imaging_and_printing_project
3.11.7
hplinux_imaging_and_printing_project
3.11.10
redhatenterprise_linux
6.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
hplip
bullseye
3.21.2+dfsg1-2
fixed
squeeze
no-dsa
bookworm
3.22.10+dfsg0-2
fixed
sid
3.22.10+dfsg0-5.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
hplip
raring
not-affected
quantal
Fixed 3.12.6-3ubuntu4.2
released
precise
Fixed 3.12.2-1ubuntu3.3
released
oneiric
ignored
lucid
Fixed 3.10.2-2ubuntu2.4
released
hardy
ignored