Mandrake Linux Security Advisory : hplip (MDKSA-2007:201)
High Nessus Plugin ID 27562
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA vulnerability in the hpssd tool was discovered where it did not correctly handle shell meta-characters. A local attacker could use this flaw to execute arbitrary commands as the hplip user.
As well, this update fixes a problem with some HP scanners on Mandriva Linux 2007.1, particularly HP PSC 1315, which wouldn't be detected and also fixes a problem with HP 1220 and possibly other models when scanning via the OpenOffice.org suite.
Updated packages have been patched to prevent these issues.
SolutionUpdate the affected packages.