CVE-2012-5221

Severity

50%

Complexity

99%

Confidentiality

48%

Directory traversal vulnerability in the PostScript Interpreter, as used on the HP LaserJet 4xxx, 5200, 90xx, M30xx, M4345, M50xx, M90xx, P3005, and P4xxx; LaserJet Enterprise P3015; Color LaserJet 3xxx, 47xx, 5550, 9500, CM60xx, CP35xx, CP4005, and CP6015; Color LaserJet Enterprise CP4xxx; and 9250c Digital Sender with model-dependent firmware through 52.x allows remote attackers to read arbitrary files via unknown vectors.

Directory traversal vulnerability in the PostScript Interpreter, as used on the HP LaserJet 4xxx, 5200, 90xx, M30xx, M4345, M50xx, M90xx, P3005, and P4xxx; LaserJet Enterprise P3015; Color LaserJet 3xxx, 47xx, 5550, 9500, CM60xx, CP35xx, CP4005, and CP6015; Color LaserJet Enterprise CP4xxx; and 9250c Digital Sender with model-dependent firmware through 52.x allows remote attackers to read arbitrary files via unknown vectors.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:N/A:N).

Overview

Type

HP

First reported 11 years ago

2013-04-29 21:55:00

Last updated 11 years ago

2013-12-31 04:19:00

Affected Software

HP Color LaserJet 3000 Q7534A

q7534a

HP Color LaserJet 3800 Q5981A

q5981a

HP Color LaserJet 4700 Q7492A

q7492a

HP Color LaserJet 4730 Multifunction Printer (MFP) CB480A

cb480a

HP Color LaserJet 5550 Q3714A

q3714a

HP Color LaserJet 9500 Multifunction Printer (MFP) C8549A

c8549a

HP Color LaserJet CM6030 Multifunctin Printer (MFP) CE664A

ce664a

HP Color LaserJet CM6040 Multifunction Printer (MFP) Q3939A

q3939a

HP Color LaserJet CP3505 CB442A

cb442a

HP Color LaserJet CP3525 CC469A

cc469a

HP Color LaserJet CP4005 CB503A

cb503a

HP Color LaserJet CP6015 Q3932A

q3932a

HP Color LaserJet Enterprise CP4025 CC490A

cc490a

HP Color LaserJet Enterprise CP4525 CC493A

cc493a

HP Digital Sender 9250C CB472A

cb472a

HP LaserJet 4240 printer Q7785A

q7785a

HP LaserJet 4250 Q5400

q5400a

HP LaserJet 4345 Multifunction Printer (MFP) Q3942A

q3942a

HP LaserJet 4350 Q5407A

q5407a

HP LaserJet 5200L Q7543A

q7543a

HP LaserJet 5200N Q7543A

q7543a

HP laserjet 9040 Q7697A

q7697a

HP LaserJet 9040 Multifunction Printer (MFP) Q3721A

q3721a

HP laserjet 9050 Q7697A

q7697a

HP LaserJet 9050 Multifunction Printer (MFP) Q3721A

q3721a

HP LaserJet Enterprise P3015 CE526A

ce526a

HP LaserJet M3027 MFP printer CB416A

cb416a

HP LaserJet M3035 Multifunction Printer (MFP) CB414A

cb414a

HP LaserJet M3035 Multifunction Printer (MFP) CC519A

cc519a

HP LaserJet M4345 Multifunction Printer (MFP) CB425A

cb425a

HP LaserJet M5025 Multifunction Printer (MFP)Q7840A

q7840a

HP LaserJet M5035 Multifunction Printer (MFP) Q7829A

q7829a

HP LaserJet M9040 Multifunction Printer (MFP) CC394A

cc394a

HP LaserJet M9050 Multifunction Printer (MFP) CC395A

cc395a

HP LaserJet P3005 Q7812A

q7812a

HP LaserJet P4014 printer CB507A

cb507a

HP LaserJet P4015 CB509A

cb509a

HP LaserJet P4515 printer CB514A

cb514a

References

20130426 Hewlett-Packard Multiple Printers PostScript Interpreter Directory Traversal Vulnerability

SSRT100936

Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.