HP Managed Printing Administration img_id handles multiple Security Vulnerabilities

Release date:
Updated on:

Affected Systems:
HP Managed Printing Administration
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2011-4169

HP Managed Printing Administration is a print management program designed for hp udp users.

HP Managed Printing Administration has multiple vulnerabilities in the implementation of img_id. These vulnerabilities allow remote attackers to remotely operate application databases and delete arbitrary files. This vulnerability can be exploited without authentication.

Vulnerability script location:

\ Inetpub \ wwwroot \ hpmpa \ mpl \ view \ config \ imglist \ imgselect \ Default. asp
\ Inetpub \ wwwroot \ hpmpa \ mpl \ view \ config \ imgmap \ bgselect \ Default. asp
\ Inetpub \ wwwroot \ hpmpa \ mpl \ view \ config \ imgmap \ imgselect \ Default. asp

The content entered into the above script through the img_id parameter can be injected with SQL. You can also use this parameter to perform directory traversal to delete arbitrary files.

<* Source: Andrea Micalizzi aka rgod

Link: http://www.zerodayinitiative.com/advisories/ZDI-12-001/
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:

HP
--
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:

Http://itrc.hp.com