Vulnerability Details CVE-2011-4166
Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted form data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.713
EPSS Ranking 98.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03128469
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03128469
- http://www.zerodayinitiative.com/advisories/ZDI-11-352/
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03128469
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03128469
- http://www.zerodayinitiative.com/advisories/ZDI-11-352/
Products affected by CVE-2011-4166
-
cpe:2.3:a:hp:managed_printing_administration:*