CVE-2009-0122
HP Linux Imaging and Printing <2.8.2 - Local Privilege Escalation
Title source: llmDescription
hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership of its configuration files within home directories.
References (4)
Core 4
Core References
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33539
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33249
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-708-1
Exploit x_refsource_confirm
https://launchpad.net/bugs/191299
Scores
EPSS
0.0005
EPSS Percentile
16.7%
Details
CWE
CWE-264
Status
published
Products (2)
hp/hplip
2.7.7
hp/hplip
2.8.2
Published
Jan 15, 2009
Tracked Since
Feb 18, 2026