SuSE 10 Security Update : foomatic-filters (ZYPP Patch Number 7676)
Medium Nessus Plugin ID 55830
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionThe foomatic print filters of the hplip package contained a remote code execution vulnerability. Remote users, if allowed to access a print server such as CUPS, could execute arbitrary commands as lp system user.
CVE-2011-2697: CVSS v2 Base Score: 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P):
Input Validation (CWE-20)
SolutionApply ZYPP patch number 7676.