CVE-2009-0122

medium HPE
CVSS v3 Base Score
6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS Score
0.1%
Exploitation probability in 30 days
Top 83% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
M
Confidentiality
C
Integrity
C
Availability
C
Published: January 15, 2009 (6328 days ago)
Last Modified: April 23, 2026
Vendor: HPE
Source: NVD

Description

hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership of its configuration files within home directories.

CWE

CWE-264

Affected Products

hp hplip

References

🔗 secunia.com 🔗 www.securityfocus.com 🔗 www.ubuntu.com 🔗 launchpad.net 🔗 secunia.com