Details of VAR-200701-0078

ID

VAR-200701-0078

CVE

CVE-2007-0358

TITLE

HP Jetdirect of FTP Service disruption in server implementation (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2007-003242

DESCRIPTION

Unspecified vulnerability in the FTP server implementation in HP Jetdirect firmware x.20.nn through x.24.nn allows remote attackers to cause a denial of service via unknown vectors. HP Jetdirect is prone to an unspecified denial-of-service vulnerability. An attacker can exploit this issue on an affected computer to cause a denial-of-service condition. HP Jetdirect firmware versions from x.20.00 to x.24.00 are vulnerable to this issue. HP JetDirect printer is a printer with integrated network function developed by Hewlett-Packard Company. There is an input validation vulnerability when the FTP implemented by HP JetDirect processes user requests

Trust: 1.98

sources: NVD: CVE-2007-0358 // JVNDB: JVNDB-2007-003242 // BID: 22105 // VULHUB: VHN-23720

AFFECTED PRODUCTS

vendor:	hp	model:	jetdirect	scope:	eq	version:	x.23.nn	Trust: 1.6
vendor:	hp	model:	jetdirect	scope:	eq	version:	x.20.nn	Trust: 1.6
vendor:	hp	model:	jetdirect	scope:	eq	version:	x.21.nn	Trust: 1.6
vendor:	hp	model:	jetdirect	scope:	eq	version:	x.24.nn	Trust: 1.6
vendor:	hp	model:	jetdirect	scope:	eq	version:	x.22.nn	Trust: 1.6
vendor:	hewlett packard	model:	jetdirect	scope:	eq	version:	x.20.nn to x.24.nn	Trust: 0.8
vendor:	hp	model:	jetdirect	scope:	eq	version:	x.21.00	Trust: 0.3
vendor:	hp	model:	jetdirect	scope:	eq	version:	x.20.00	Trust: 0.3
vendor:	hp	model:	jetdirect	scope:	ne	version:	x.25.00	Trust: 0.3

sources: BID: 22105 // JVNDB: JVNDB-2007-003242 // CNNVD: CNNVD-200701-311 // NVD: CVE-2007-0358

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2007-0358
value:	HIGH
Trust: 1.0
NVD:	CVE-2007-0358
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200701-311
value:	HIGH
Trust: 0.6
VULHUB:	VHN-23720
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2007-0358
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-23720
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-23720 // JVNDB: JVNDB-2007-003242 // CNNVD: CNNVD-200701-311 // NVD: CVE-2007-0358

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2007-0358

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200701-311

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-200701-311

CONFIGURATIONS

sources: JVNDB: JVNDB-2007-003242

PATCH

title:

HPSBPI02185 SSRT071290

url:

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00838612

Trust: 0.8

sources: JVNDB: JVNDB-2007-003242

EXTERNAL IDS

db:	NVD	id:	CVE-2007-0358	Trust: 2.5
db:	BID	id:	22105	Trust: 2.0
db:	SECUNIA	id:	23802	Trust: 1.7
db:	VUPEN	id:	ADV-2007-0233	Trust: 1.7
db:	SECTRACK	id:	1017532	Trust: 1.7
db:	OSVDB	id:	32867	Trust: 1.7
db:	JVNDB	id:	JVNDB-2007-003242	Trust: 0.8
db:	CNNVD	id:	CNNVD-200701-311	Trust: 0.7
db:	HP	id:	SSRT071290	Trust: 0.6
db:	XF	id:	31589	Trust: 0.6
db:	VULHUB	id:	VHN-23720	Trust: 0.1

sources: VULHUB: VHN-23720 // BID: 22105 // JVNDB: JVNDB-2007-003242 // CNNVD: CNNVD-200701-311 // NVD: CVE-2007-0358

REFERENCES

url:	http://www.securityfocus.com/bid/22105	Trust: 1.7
url:	http://itrc.hp.com/service/cki/docdisplay.do?docid=c00838612	Trust: 1.7
url:	http://osvdb.org/32867	Trust: 1.7
url:	http://securitytracker.com/id?1017532	Trust: 1.7
url:	http://secunia.com/advisories/23802	Trust: 1.7
url:	http://www.vupen.com/english/advisories/2007/0233	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/31589	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-0358	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-0358	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/31589	Trust: 0.6
url:	http://www.frsirt.com/english/advisories/2007/0233	Trust: 0.6
url:	http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=bpj07429	Trust: 0.3
url:	http://www.hp.com/net_printing/ppss/	Trust: 0.3

sources: VULHUB: VHN-23720 // BID: 22105 // JVNDB: JVNDB-2007-003242 // CNNVD: CNNVD-200701-311 // NVD: CVE-2007-0358

CREDITS

HP Security Bulletin security-alert@hp.com

Trust: 0.6

sources: CNNVD: CNNVD-200701-311

SOURCES

db:	VULHUB	id:	VHN-23720
db:	BID	id:	22105
db:	JVNDB	id:	JVNDB-2007-003242
db:	CNNVD	id:	CNNVD-200701-311
db:	NVD	id:	CVE-2007-0358

LAST UPDATE DATE

2025-04-10T23:24:26.619000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-23720	date:	2017-07-29T00:00:00
db:	BID	id:	22105	date:	2007-01-19T03:10:00
db:	JVNDB	id:	JVNDB-2007-003242	date:	2012-09-25T00:00:00
db:	CNNVD	id:	CNNVD-200701-311	date:	2007-01-21T00:00:00
db:	NVD	id:	CVE-2007-0358	date:	2025-04-09T00:30:58.490

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-23720	date:	2007-01-19T00:00:00
db:	BID	id:	22105	date:	2007-01-18T00:00:00
db:	JVNDB	id:	JVNDB-2007-003242	date:	2012-09-25T00:00:00
db:	CNNVD	id:	CNNVD-200701-311	date:	2007-01-18T00:00:00
db:	NVD	id:	CVE-2007-0358	date:	2007-01-19T01:28:00