Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple cups 1.3.9 vulnerabilities and exploits
(subscribe to this query)
614
VMScore
CVE-2010-0393
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted local...
Apple Cups 1.2.2
Apple Cups 1.4.1
Apple Cups 1.3.7
Apple Cups 1.3.9
668
VMScore
CVE-2008-5286
Integer overflow in the _cupsImageReadPNG function in CUPS 1.1.17 up to and including 1.3.9 allows remote malicious users to execute arbitrary code via a PNG image with a large height value, which bypasses a validation check and triggers a buffer overflow.
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.22
Apple Cups 1.1.23
Apple Cups 1.2.3
Apple Cups 1.2.4
Apple Cups 1.2
Apple Cups 1.3.5
Apple Cups 1.3.6
Apple Cups 1.1.17
Apple Cups 1.1.18
Apple Cups 1.1.21
Apple Cups 1.2.10
Apple Cups 1.2.11
Apple Cups 1.2.7
Apple Cups 1.2.8
Apple Cups 1.3.0
Apple Cups 1.3.1
Apple Cups 1.3
Apple Cups 1.2.0
Apple Cups 1.2.1
Apple Cups 1.2.5
890
VMScore
CVE-2008-0053
Multiple buffer overflows in the HP-GL/2-to-PostScript filter in CUPS prior to 1.3.6 might allow remote malicious users to execute arbitrary code via a crafted HP-GL/2 file.
Apple Cups 1.1.5-2
Apple Cups 1.1.6
Apple Cups 1.1.10-1
Apple Cups 1.1.10
Apple Cups 1.1.18
Apple Cups 1.1.17
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.21
Apple Cups 1.1.22
Apple Cups 1.1.1
Apple Cups 1.1.5-1
Apple Cups 1.1.5
Apple Cups 1.1.9
Apple Cups 1.1.9-1
Apple Cups 1.1.16
Apple Cups 1.1.15
Apple Cups 1.2.1
Apple Cups 1.2.0
Apple Cups 1.3.9
Apple Cups 1.2.7
Apple Cups 1.3
605
VMScore
CVE-2010-0542
The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS prior to 1.4.4 does not check the return values of certain calloc calls, which allows remote malicious users to cause a denial of service (NULL pointer dereference or heap memory corruption) ...
Apple Cups 1.1.1
Apple Cups 1.1.5-1
Apple Cups 1.1.5
Apple Cups 1.1.9
Apple Cups 1.1.9-1
Apple Cups 1.1.16
Apple Cups 1.1.15
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.22
Apple Cups 1.2.1
Apple Cups 1.2.0
Apple Cups 1.3.9
Apple Cups 1.2.7
Apple Cups 1.3
Apple Cups 1.3.8
Apple Cups 1.3.7
Apple Cups 1.1.5-2
Apple Cups 1.1.6
Apple Cups 1.1.10-1
Apple Cups 1.1.10
Apple Cups 1.1.18
435
VMScore
CVE-2010-1748
The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS prior to 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 prior to 10.6.4, and other platforms, does not properly handle parameter values containing a % (percent) character without two subseque...
Apple Cups 1.1.6
Apple Cups 1.1.6-1
Apple Cups 1.1.10
Apple Cups 1.1.6-3
Apple Cups 1.1.17
Apple Cups 1.1.12
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.21
Apple Cups 1.2
Apple Cups 1.2.5
Apple Cups 1.2.4
Apple Cups 1.2.9
Apple Cups 1.2.10
Apple Cups 1.3.0
Apple Cups 1.4.0
Apple Cups 1.3.7
Apple Cups 1.3.10
Apple Cups 1.3.6
Apple Cups 1.1.2
Apple Cups 1.1.3
Apple Cups 1.1.4
1 EDB exploit
231
VMScore
CVE-2010-2431
The cupsFileOpen function in CUPS prior to 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file.
Apple Cups 1.3.6
Apple Cups 1.1
Apple Cups 1.1.3
Apple Cups 1.1.4
Apple Cups 1.1.8
Apple Cups 1.1.7
Apple Cups 1.1.14
Apple Cups 1.1.13
Apple Cups 1.1.19
Apple Cups 1.1.21
Apple Cups 1.1.23
Apple Cups 1.4.1
Apple Cups 1.2.3
Apple Cups 1.2.2
Apple Cups 1.2.12
Apple Cups 1.3
Apple Cups 1.3.4
Apple Cups 1.3.5
Apple Cups 1.3.11
Apple Cups 1.1.1
Apple Cups 1.1.5-1
Apple Cups 1.1.5
445
VMScore
CVE-2010-2432
The cupsDoAuthentication function in auth.c in the client in CUPS prior to 1.4.4, when HAVE_GSSAPI is omitted, does not properly handle a demand for authorization, which allows remote CUPS servers to cause a denial of service (infinite loop) via HTTP_UNAUTHORIZED responses.
Apple Cups 1.1.2
Apple Cups 1.1.3
Apple Cups 1.1.6-3
Apple Cups 1.1.6-2
Apple Cups 1.1.12
Apple Cups 1.1.11
Apple Cups 1.1.14
Apple Cups 1.1.20
Apple Cups 1.1.19
Apple Cups 1.1.21
Apple Cups 1.2
Apple Cups 1.4.1
Apple Cups 1.2.4
Apple Cups 1.2.3
Apple Cups 1.2.10
Apple Cups 1.2.11
Apple Cups 1.3.3
Apple Cups 1.3.4
Apple Cups 1.3.10
Apple Cups 1.3.11
Apple Cups 1.3.6
Apple Cups 1.1
454
VMScore
CVE-2011-3170
The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and previous versions does not properly handle the first code word in an LZW stream, which allows remote malicious users to trigger a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted strea...
Apple Cups 1.4
Apple Cups 1.4.0
Apple Cups 1.1.5-1
Apple Cups 1.1.5-2
Apple Cups 1.1.9-1
Apple Cups 1.1.10-1
Apple Cups 1.1.15
Apple Cups 1.1.18
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.22
Apple Cups 1.2
Apple Cups 1.2.8
Apple Cups 1.2.9
Apple Cups 1.4.1
Apple Cups 1.4.2
Apple Cups 1.1.6
Apple Cups 1.1.6-1
Apple Cups 1.1.10
Apple Cups 1.1.6-3
Apple Cups 1.1.17
Apple Cups 1.1.12
605
VMScore
CVE-2008-3640
Integer overflow in the WriteProlog function in texttops in CUPS prior to 1.3.9 allows remote malicious users to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow.
Apple Cups 1.1.11
Apple Cups 1.1.14
Apple Cups 1.1.13
Apple Cups 1.1.16
Apple Cups 1.1.18
Apple Cups 1.1.20
Apple Cups 1.1.1
Apple Cups 1.1.10
Apple Cups 1.1.19
Apple Cups 1.1.21
Apple Cups 1.1.3
Apple Cups 1.1.4
Apple Cups 1.1.15
Apple Cups 1.1.12
Apple Cups 1.1.23
Apple Cups 1.1.22
Apple Cups 1.1.5
Apple Cups 1.2.1
Apple Cups 1.1.6-2
Apple Cups 1.1.8
Apple Cups 1.2.7
Apple Cups 1.2.8
1000
VMScore
CVE-2008-3641
The Hewlett-Packard Graphics Language (HPGL) filter in CUPS prior to 1.3.9 allows remote malicious users to execute arbitrary code via crafted pen width and pen color opcodes that overwrite arbitrary memory.
Apple Cups
Apple Cups 1.3.0
Apple Cups 1.3
Apple Cups 1.2.8
Apple Cups 1.2.7
Apple Cups 1.2.0
Apple Cups 1.2
Apple Cups 1.1.22
Apple Cups 1.1.20
Apple Cups 1.1.19
Apple Cups 1.1.18
Apple Cups 1.1.11
Apple Cups 1.1.10-1
Apple Cups 1.1.6-2
Apple Cups 1.1.6-1
Apple Cups 1.1.1
Apple Cups 1.1
Apple Cups 1.3.4
Apple Cups 1.3.3
Apple Cups 1.2.12
Apple Cups 1.2.11
Apple Cups 1.2.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »