cbcvebase.
CVE-2010-4267
published 2011-01-20

CVE-2010-4267: Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing (HPLIP) 1.6.7, 3.9.8, 3.10.9, and…

PriorityP345high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
10.81%
95.3th percentile
Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing (HPLIP) 1.6.7, 3.9.8, 3.10.9, and probably other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SNMP response with a large length value.

Affected

4 ranges
VendorProductVersion rangeFixed in
debianhplip< hplip 3.10.6-2 (bookworm)hplip 3.10.6-2 (bookworm)
hplinux_imaging_and_printing_project
hplinux_imaging_and_printing_project
hplinux_imaging_and_printing_project

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.