FrSIRT - Fedora Security Update Fixes HPLIP Local Code Injection Vulnerbility / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes HPLIP Local Code Injection Vulnerbility

Date de Publication : 2007-10-15 © FrSIRT.COM
Titre : Fedora Security Update Fixes HPLIP Local Code Injection Vulnerbility
Identifiant : FrSIRT/AVIS-2007-3499
CVE ID : CVE-2007-5208
Risque : Modéré (2/4) -

Exploitable à distance : Non
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Une vulnérabilité a été identifiée dans Fedora, elle pourrait être exploitée par des attaquants locaux afin d'obtenir des privilèges élevés [...]

Solution

Installer les mises à jour :

2c6dafcf59ea6ad25e4b0f21824e272e15eac490 hplip-gui-1.7.4a-6.fc7.ppc64.rpm
c63a95a36a63c5e67d2e3ae582d6d3390244ab57 hplip-1.7.4a-6.fc7.ppc64.rpm
918acf9691c65c7fb3338719b3ea18b9ec772aef hpijs-1.7.4a-6.fc7.ppc64.rpm
6cbb7cfb4a75f71cdaf8d8ffb286b405e02eecbe hplip-debuginfo-1.7.4a-6.fc7.ppc64.rpm
c1aa00429151f0abd474c7fc769522c973012c5b libsane-hpaio-1.7.4a-6.fc7.ppc64.rpm
6e5d32d1e1166567063137c0a1c0d480cc95b8a0 hplip-1.7.4a-6.fc7.i386.rpm
be5b515d659ca4f2b5f88797afd0676368475d1f hplip-debuginfo-1.7.4a-6.fc7.i386.rpm
924ba1bbe5bbf05e336dbb51062ee277b6c9ead4 libsane-hpaio-1.7.4a-6.fc7.i386.rpm
0c651369df8ab3007999a8b909f3ec447e5718a6 hpijs-1.7.4a-6.fc7.i386.rpm
48551d094070e7efd09fc2bb5d95a0166828187c hplip-gui-1.7.4a-6.fc7.i386.rpm
438742d2769d09d660a06244cdbbc072afbcc22f hplip-gui-1.7.4a-6.fc7.x86_64.rpm
d6fad1250fa848d942d515eb83ca2eba338e1eb2 hplip-1.7.4a-6.fc7.x86_64.rpm
2523f339146023931ca41814ed0fbce16af38ef8 libsane-hpaio-1.7.4a-6.fc7.x86_64.rpm
f96a70070bfc770d82dfccbd9a846ad297972de7 hpijs-1.7.4a-6.fc7.x86_64.rpm
19e9c272ad2755db6a52edc468f2faefa840824d hplip-debuginfo-1.7.4a-6.fc7.x86_64.rpm
d3dc4e6e0ebe963da2e7976e8d081be0197bec1d hpijs-1.7.4a-6.fc7.ppc.rpm
19616ca728fb8c046f94d07c9bff4a02ddb84014 hplip-debuginfo-1.7.4a-6.fc7.ppc.rpm
69951042bee9eaf0f47780386ed4deefc4108030 libsane-hpaio-1.7.4a-6.fc7.ppc.rpm
435b50f8d634bd624d3c8a6b3abb99d5249ec8ee hplip-gui-1.7.4a-6.fc7.ppc.rpm
cb3a3e72f73822cb0d6f107ce22a6bad4daf1bb1 hplip-1.7.4a-6.fc7.ppc.rpm
28dbfa04f0b01e31420d9dd075b5ab5b80ed724b hplip-1.7.4a-6.fc7.src.rpm

Historique

2007-10-15 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Mozilla Products Remote Code Execution Vulnerabilities
	Mozilla Firefox Unspecified Remote Command Execution Vulnerability
	Mozilla JavaScript Garbage Collector Code Execution Vulnerability
	Mozilla Thunderbird Code Execution and Cross Site Scripting Issues
	Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues
	Mozilla Thunderbird Multiple Security Bypass and Code Execution Issues
	Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues

	Microsoft Internet Explorer Frame Cross-Domain Scripting Vulnerability
	Microsoft Internet Explorer "location" Cross-Domain Scripting Issue
	Microsoft Windows PGM Remote Denial of Service Vulnerability (MS08-036)
	Microsoft Active Directory Remote Denial of Service (MS08-035)
	Microsoft Windows WINS Local Privilege Escalation Vulnerability (MS08-034)
	Microsoft Windows DirectX Remote Code Execution (MS08-033)
	Microsoft Windows Speech API Remote Code Execution (MS08-032)

	Apple Mac OS X Command Execution Vulnerabilities
	Apple Safari for Mac OS X Remote Code Execution Vulnerability
	Apple Mac OS X ARDAgent Local Privilege Escalation Vulnerability
	Apple Safari Code Execution and Information Disclosure Vulnerabilities
	Apple QuickTime Multiple File Handling Code Execution Vulnerabilities
	Apple Safari for Windows Remote Code Execution Vulnerability
	Apple Mac OS X Command Execution Vulnerabilities