CVE-2010-4267 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-4267 PUBLISHED CVSS 9.300000190734863 CRITICAL

Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing (HPLIP) 1.6.7, 3.9.8, 3.10.9, and probably other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SNMP response with a large length value.

EPSS 10.22% · 93.1th percentile

Risk Scores

CVSS v4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS Score

10.22%

93.1th percentile

Affected Products

Vendor	Product	Versions
hp	linux_imaging_and_printing_project	1.6.7, 3.9.8, 3.10.9
n/a	n/a	n/a

Timeline

Jan 20, 2011 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 3, 2023 EPSS Score
Feb 4, 2023 EPSS Score
Feb 13, 2023 EPSS Score
Mar 7, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

42956 third-party-advisory
43068 third-party-advisory
70498 vdb
43102 third-party-advisory
ADV-2011-0136 vdb
ADV-2011-0212 vdb
45833 vdb
43022 third-party-advisory
ADV-2011-0228 vdb
https://bugzilla.redhat.com/attachment.cgi?id=468455&action=diff url
SUSE-SR:2011:005 vendor-advisory
ADV-2011-0211 vdb
SUSE-SR:2011:002 vendor-advisory
FEDORA-2011-0524 vendor-advisory
MDVSA-2011:013 vendor-advisory
RHSA-2011:0154 vendor-advisory
ADV-2011-0243 vdb
USN-1051-1 vendor-advisory
43083 third-party-advisory
hplip-hpmudgetpml-bo(64738) vdb

…and 9 more

Open in Interactive Console →