CVE-2009-0122

Published: Jan 15, 2009Modified: Apr 23, 2026

6.9

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 3.4 / Impact: 10.0

Source: NVD

Description

hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership of its configuration files within home directories.

Affected (2)

Products: Hp: Hplip

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Hp Hplip	Version 2.7.7
Hp Hplip	Version 2.8.2

Related CWEs

References (8)

http://secunia.com/advisories/33539

Source: cve@mitre.org

http://www.securityfocus.com/bid/33249

Source: cve@mitre.org

Patch

http://www.ubuntu.com/usn/usn-708-1

Source: cve@mitre.org

https://launchpad.net/bugs/191299

Source: cve@mitre.org

Exploit

http://secunia.com/advisories/33539

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/33249

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.ubuntu.com/usn/usn-708-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://launchpad.net/bugs/191299

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

Timeline

No history available yet.