Scientific Linux Security Update : hplip on SL5.x i386/x86_64
High Nessus Plugin ID 60937
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA flaw was found in the way certain HPLIP tools discovered devices using the SNMP protocol. If a user ran certain HPLIP tools that search for supported devices using SNMP, and a malicious user is able to send specially crafted SNMP responses, it could cause those HPLIP tools to crash or, possibly, execute arbitrary code with the privileges of the user running them. (CVE-2010-4267)
SolutionUpdate the affected hpijs, hplip and / or libsane-hpaio packages.