Multiple Remote Security Vulnerabilities in HP Managed Printing Administration

Release date: 2011-12-22
Updated on: 2013-07-30

Affected Systems:
HP Managed Printing Administration 2.6.3
Unaffected system:
HP Managed Printing Administration 2.6.4
Description:
--------------------------------------------------------------------------------
Bugtraq id: 51174
CVE (CAN) ID: CVE-2011-4166, CVE-2011-4167, CVE-2011-4168, CVE-2011-4169

HP Managed Printing Administration is a print management program designed for hp udp users.

Multiple Remote Security Vulnerabilities exist in versions earlier than HP Managed Printing Administration 2.6.4, attackers can exploit this vulnerability to perform arbitrary operations, including remote code execution vulnerabilities, Multiple Arbitrary File Deletion vulnerabilities, Multiple Arbitrary File Creation vulnerabilities, multiple directory traversal vulnerabilities, and SQL injection vulnerabilities.

<* Source: Andrea Micalizzi aka rgod

Link: http://www.rapid7.com/db/modules/exploit/windows/http/hp_mpa_job_acct
Http://www.osvdb.org/78015
Http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

HP
--
HP has released a Security Bulletin (HPSBPI02732) for this purpose and the corresponding patch:
HPSBPI02732: SSRT100435 rev.1-HP Managed Printing Administration, Remote Execution of Arbitrary Code and Other Vulnerabilities
Link: http://h20566.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/