What is CVE-2011-4166?

CVE-2011-4166 is a vulnerability in Hp Managed_printing_administration, classified under Path Traversal. Published 2011-12-27.

Is CVE-2011-4166 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Path Traversal in Hp Managed_printing_administration

CVE-2011-4166

Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted form data.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.635 (98.4th percentile) — read the EPSS interpretation.

Affected products

Hp Managed_printing_administration
N/a — versions n/a

Weakness classification (CWE)

CWE-22 — Path Traversal

Public proof-of-concept exploits

rapid7/metasploit-framework

References

hp-security-alert@hp.com (x_refsource_MISC)
HPSBPI02732 (Vendor Advisory, x_refsource_HP, vendor-advisory)

Frequently asked questions

What is CVE-2011-4166?: CVE-2011-4166 is a vulnerability in Hp Managed_printing_administration, classified under Path Traversal. Published 2011-12-27.
Is CVE-2011-4166 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.