ID de Prueba:	1.3.6.1.4.1.25623.1.0.881287
Categoría:	CentOS Local Security Checks
Título:	CentOS Update for hpijs3 CESA-2011:0154 centos5 x86_64
Resumen:	The remote host is missing an update for the 'hpijs3'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'hpijs3' package(s) announced via the referenced advisory. Vulnerability Insight: Hewlett-Packard Linux Imaging and Printing (HPLIP) provides drivers for Hewlett-Packard printers and multifunction peripherals, and tools for installing, using, and configuring them. A flaw was found in the way certain HPLIP tools discovered devices using the SNMP protocol. If a user ran certain HPLIP tools that search for supported devices using SNMP, and a malicious user is able to send specially-crafted SNMP responses, it could cause those HPLIP tools to crash or, possibly, execute arbitrary code with the privileges of the user running them. (CVE-2010-4267) Red Hat would like to thank Sebastian Krahmer of the SuSE Security Team for reporting this issue. Users of hplip should upgrade to these updated packages, which contain a backported patch to correct this issue. Affected Software/OS: hpijs3 on CentOS 5 Solution: Please install the updated packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4267 1024967 http://www.securitytracker.com/id?1024967 42939 http://secunia.com/advisories/42939 42956 http://secunia.com/advisories/42956 43022 http://secunia.com/advisories/43022 43068 http://secunia.com/advisories/43068 43083 http://secunia.com/advisories/43083 43102 http://secunia.com/advisories/43102 45833 http://www.securityfocus.com/bid/45833 48441 http://secunia.com/advisories/48441 70498 http://osvdb.org/70498 ADV-2011-0136 http://www.vupen.com/english/advisories/2011/0136 ADV-2011-0160 http://www.vupen.com/english/advisories/2011/0160 ADV-2011-0211 http://www.vupen.com/english/advisories/2011/0211 ADV-2011-0212 http://www.vupen.com/english/advisories/2011/0212 ADV-2011-0228 http://www.vupen.com/english/advisories/2011/0228 ADV-2011-0243 http://www.vupen.com/english/advisories/2011/0243 DSA-2152 http://www.debian.org/security/2011/dsa-2152 FEDORA-2011-0524 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053474.html FEDORA-2011-0525 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053472.html GLSA-201203-17 http://security.gentoo.org/glsa/glsa-201203-17.xml MDVSA-2011:013 http://www.mandriva.com/security/advisories?name=MDVSA-2011:013 RHSA-2011:0154 http://www.redhat.com/support/errata/RHSA-2011-0154.html SUSE-SR:2011:002 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html SUSE-SR:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html USN-1051-1 http://www.ubuntu.com/usn/USN-1051-1 hplip-hpmudgetpml-bo(64738) https://exchange.xforce.ibmcloud.com/vulnerabilities/64738 https://bugzilla.redhat.com/attachment.cgi?id=468455&action=diff https://bugzilla.redhat.com/show_bug.cgi?id=662740
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.