Test ID:	1.3.6.1.4.1.25623.1.0.880506
Category:	CentOS Local Security Checks
Title:	CentOS Update for hpijs3 CESA-2011:0154 centos5 i386
Summary:	The remote host is missing an update for the 'hpijs3'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'hpijs3' package(s) announced via the referenced advisory. Vulnerability Insight: Hewlett-Packard Linux Imaging and Printing (HPLIP) provides drivers for Hewlett-Packard printers and multifunction peripherals, and tools for installing, using, and configuring them. A flaw was found in the way certain HPLIP tools discovered devices using the SNMP protocol. If a user ran certain HPLIP tools that search for supported devices using SNMP, and a malicious user is able to send specially-crafted SNMP responses, it could cause those HPLIP tools to crash or, possibly, execute arbitrary code with the privileges of the user running them. (CVE-2010-4267) Red Hat would like to thank Sebastian Krahmer of the SuSE Security Team for reporting this issue. Users of hplip should upgrade to these updated packages, which contain a backported patch to correct this issue. Affected Software/OS: hpijs3 on CentOS 5 Solution: Please install the updated packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4267 1024967 http://www.securitytracker.com/id?1024967 42939 http://secunia.com/advisories/42939 42956 http://secunia.com/advisories/42956 43022 http://secunia.com/advisories/43022 43068 http://secunia.com/advisories/43068 43083 http://secunia.com/advisories/43083 43102 http://secunia.com/advisories/43102 45833 http://www.securityfocus.com/bid/45833 48441 http://secunia.com/advisories/48441 70498 http://osvdb.org/70498 ADV-2011-0136 http://www.vupen.com/english/advisories/2011/0136 ADV-2011-0160 http://www.vupen.com/english/advisories/2011/0160 ADV-2011-0211 http://www.vupen.com/english/advisories/2011/0211 ADV-2011-0212 http://www.vupen.com/english/advisories/2011/0212 ADV-2011-0228 http://www.vupen.com/english/advisories/2011/0228 ADV-2011-0243 http://www.vupen.com/english/advisories/2011/0243 DSA-2152 http://www.debian.org/security/2011/dsa-2152 FEDORA-2011-0524 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053474.html FEDORA-2011-0525 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053472.html GLSA-201203-17 http://security.gentoo.org/glsa/glsa-201203-17.xml MDVSA-2011:013 http://www.mandriva.com/security/advisories?name=MDVSA-2011:013 RHSA-2011:0154 http://www.redhat.com/support/errata/RHSA-2011-0154.html SUSE-SR:2011:002 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html SUSE-SR:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html USN-1051-1 http://www.ubuntu.com/usn/USN-1051-1 hplip-hpmudgetpml-bo(64738) https://exchange.xforce.ibmcloud.com/vulnerabilities/64738 https://bugzilla.redhat.com/attachment.cgi?id=468455&action=diff https://bugzilla.redhat.com/show_bug.cgi?id=662740
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.