CVE-2011-0279
First published: Mon Mar 07 2011(Updated: )
HP Multifunction Peripheral (MFP) Digital Sending Software (DSS) 4.91.00 does not properly configure authentication settings of managed devices within device templates, which allows attackers to access these devices via actions that were intended to require authentication.
Credit: hp-security-alert@hp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HP Multifunction Peripheral Digital Sending Software | =4.91.00 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-0279?
CVE-2011-0279 has been classified as a medium severity vulnerability due to its potential to allow unauthorized access to managed devices.
How do I fix CVE-2011-0279?
To fix CVE-2011-0279, ensure that authentication settings for managed devices are properly configured in the device templates.
What systems are affected by CVE-2011-0279?
CVE-2011-0279 affects HP Multifunction Peripheral Digital Sending Software version 4.91.00.
What attack vector is associated with CVE-2011-0279?
CVE-2011-0279 allows attackers to perform actions on managed devices without proper authentication.
Is there a workaround for CVE-2011-0279?
Until a patch is applied, a temporary workaround is to review and secure the configuration settings of affected devices.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/hp
- canonical/hp multifunction peripheral digital sending software
- version/hp multifunction peripheral digital sending software/4.91.00