CVE-2007-5208

Related Files

hplip hpssd.py From Address Arbitrary Command Execution

Posted Feb 17, 2010

Authored by jduck | Site metasploit.com

This Metasploit module exploits a command execution vulnerable in the hpssd.py daemon of the Hewlett-Packard Linux Imaging and Printing Project. According to MITRE, versions 1.x and 2.x before 2.7.10 are vulnerable. This Metasploit module was written and tested using the Fedora 6 Linux distribution. On the test system, the daemon listens on localhost only and runs with root privileges. Although the configuration shows the daemon is to listen on port 2207, it actually listens on a dynamic port. NOTE: If the target system does not have a 'sendmail' command installed, this vulnerability cannot be exploited.

tags | exploit, root

systems | linux, fedora

advisories | CVE-2007-5208

SHA-256 | a61d6fe01d001ab26212bd0bdbeb0ec7daf382cc4f4123b5cebd7477375463f6

Download | Favorite | View

Debian Linux Security Advisory 1462-1

Posted Jan 14, 2008

Authored by Debian | Site debian.org

Debian Security Advisory 1462-1 - Kees Cook discovered that the hpssd tool of the HP Linux Printing and Imaging System (HPLIP) performs insufficient input sanitising of shell meta characters, which may result in local privilege escalation to the hplip user.

tags | advisory, shell, local

systems | linux, debian

advisories | CVE-2007-5208

SHA-256 | 34d83e3f33fc2dc2320bc5364a40d153c1cc12515fa7ebe63bb9aa861ba28301

Download | Favorite | View

Gentoo Linux Security Advisory 200710-26

Posted Oct 25, 2007

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200710-26 - Kees Cook from the Ubuntu Security team discovered that the hpssd daemon does not correctly validate user supplied data before passing it to a popen3() call. Versions less than 2.7.9-r1 are affected.

tags | advisory

systems | linux, gentoo, ubuntu

advisories | CVE-2007-5208

SHA-256 | 012b7d4d52e8e4e09de2bdfd2094c95d865d951d644213ac90d25fd0f76d71b8

Download | Favorite | View

Mandriva Linux Security Advisory 2007.201

Posted Oct 23, 2007

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A vulnerability in the hpssd tool was discovered where it did not correctly handle shell meta-characters. A local attacker could use this flaw to execute arbitrary commands as the hplip user. As well, this update fixes a problem with some HP scanners on Mandriva Linux 2007.1, particularly HP PSC 1315, which wouldn't be detected and also fixes a problem with HP 1220 and possibly other models when scanning via the OpenOffice.org suite.

tags | advisory, arbitrary, shell, local

systems | linux, mandriva

advisories | CVE-2007-5208

SHA-256 | 5a39c612fb3014e19117c3edc274a16f5bed20cb4f52e731b981114761f49ec8

Download | Favorite | View

Ubuntu Security Notice 530-1

Posted Oct 13, 2007

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 530-1 - It was discovered that the hpssd tool of hplip did not correctly handle shell meta-characters. A local attacker could exploit this to execute arbitrary commands as the hplip user.

tags | advisory, arbitrary, shell, local

systems | linux, ubuntu

advisories | CVE-2007-5208

SHA-256 | 6d8e35fa3638ffb07bb2c093a3587e1fb42953ba54540878b99114f6ffdf9c1c

Download | Favorite | View