CVE-2008-2940: CVE-2008-2940

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-2940

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

HP HPLIP 本地用户权限提升漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

HP Linux Imaging and Printing(HPLIP)是由HP公司发起的一个项目，目标是在Linux下实现HP设备的打印、扫描、传真等功能。 HPLIP 1.6.7版本中alert-mailing implementation存在本地用户权限提升漏洞。利用setalerts信息，由于HPLIP缺少对带有事件信息的驱动URI的验证，本地用户利可获得特权并发送来自root帐户的邮件信息。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-2940

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-2940

Please Login to view more intelligence information

https://bugzilla.redhat.com/show_bug.cgi?id=455235x_refsource_CONFIRM
http://secunia.com/advisories/31470third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/30683vdb-entryx_refsource_BID
http://secunia.com/advisories/32316third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/32792third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/31499third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1020684vdb-entryx_refsource_SECTRACK
http://www.ubuntu.com/usn/USN-674-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-674-2vendor-advisoryx_refsource_UBUNTU
http://www.mandriva.com/security/advisories?name=MDVSA-2008:169vendor-advisoryx_refsource_MANDRIVA
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.htmlvendor-advisoryx_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10136vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/44441vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2008-2940

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2008-2940

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2008-2940

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-2940

III. Intelligence Information for CVE-2008-2940

New Vulnerabilities

V. Comments for CVE-2008-2940

Leave a comment