Red Hat Bugzilla – Bug 457052
CVE-2008-2941 hplip hpssd.py Denial-Of-Service parsing vulnerability
Last modified: 2016-06-17 17:10:56 EDT
hplip is vulnerable to a Denial-Of-Service-Attack via it's listener port.
The problem is due to a flaw in the request parsing routines.
$telnet 127.0.0.1 2207
Connected to localhost.localdomain (127.0.0.1).
Escape character is '^]'.
Connection closed by foreign host.
<mschoene> afterwards hpssd is down
<mschoene> will file another bug for it
<twaugh> Yes, happens on RHEL-5.2 RC1 too
Created attachment 312881 [details]
The parser is very fragile in a lot of places. This patch fixes up all the
delicate bits I could find.
This issue was addressed in:
Red Hat Enterprise Linux: