Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple cups 1.3.9 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2009-0949
The ippReadIO function in cups/ipp.c in cupsd in CUPS prior to 1.3.10 does not properly initialize memory for IPP request packets, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecu...
Apple Cups
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Debian Debian Linux 6.0
Apple Mac Os X Server
Apple Mac Os X
Opensuse Opensuse 10.3
Suse Linux Enterprise 10.0
Suse Linux Enterprise 9.0
1 EDB exploit
7.5
CVSSv3
CVE-2008-5183
cupsd in CUPS 1.3.9 and previous versions allows local users, and possibly remote attackers, to cause a denial of service (daemon crash) by adding a large number of RSS Subscriptions, which triggers a NULL pointer dereference. NOTE: this issue can be triggered remotely by leverag...
Apple Cups
Apple Mac Os X
Apple Mac Os X Server
Opensuse Opensuse 11.0
Debian Debian Linux 5.0
Debian Debian Linux 6.0
1 EDB exploit
NA
CVE-2011-3170
The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and previous versions does not properly handle the first code word in an LZW stream, which allows remote malicious users to trigger a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted strea...
Apple Cups 1.4
Apple Cups 1.4.0
Apple Cups 1.1.5-1
Apple Cups 1.1.5-2
Apple Cups 1.1.9-1
Apple Cups 1.1.10-1
Apple Cups 1.1.15
Apple Cups 1.1.18
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.22
Apple Cups 1.2
Apple Cups 1.2.8
Apple Cups 1.2.9
Apple Cups 1.4.1
Apple Cups 1.4.2
Apple Cups 1.1.6
Apple Cups 1.1.6-1
Apple Cups 1.1.10
Apple Cups 1.1.6-3
Apple Cups 1.1.17
Apple Cups 1.1.12
NA
CVE-2010-2431
The cupsFileOpen function in CUPS prior to 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file.
Apple Cups 1.3.6
Apple Cups 1.1
Apple Cups 1.1.3
Apple Cups 1.1.4
Apple Cups 1.1.8
Apple Cups 1.1.7
Apple Cups 1.1.14
Apple Cups 1.1.13
Apple Cups 1.1.19
Apple Cups 1.1.21
Apple Cups 1.1.23
Apple Cups 1.4.1
Apple Cups 1.2.3
Apple Cups 1.2.2
Apple Cups 1.2.12
Apple Cups 1.3
Apple Cups 1.3.4
Apple Cups 1.3.5
Apple Cups 1.3.11
Apple Cups 1.1.1
Apple Cups 1.1.5-1
Apple Cups 1.1.5
NA
CVE-2010-2432
The cupsDoAuthentication function in auth.c in the client in CUPS prior to 1.4.4, when HAVE_GSSAPI is omitted, does not properly handle a demand for authorization, which allows remote CUPS servers to cause a denial of service (infinite loop) via HTTP_UNAUTHORIZED responses.
Apple Cups 1.1.2
Apple Cups 1.1.3
Apple Cups 1.1.6-3
Apple Cups 1.1.6-2
Apple Cups 1.1.12
Apple Cups 1.1.11
Apple Cups 1.1.14
Apple Cups 1.1.20
Apple Cups 1.1.19
Apple Cups 1.1.21
Apple Cups 1.2
Apple Cups 1.4.1
Apple Cups 1.2.4
Apple Cups 1.2.3
Apple Cups 1.2.10
Apple Cups 1.2.11
Apple Cups 1.3.3
Apple Cups 1.3.4
Apple Cups 1.3.10
Apple Cups 1.3.11
Apple Cups 1.3.6
Apple Cups 1.1
NA
CVE-2010-0542
The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS prior to 1.4.4 does not check the return values of certain calloc calls, which allows remote malicious users to cause a denial of service (NULL pointer dereference or heap memory corruption) ...
Apple Cups 1.1.1
Apple Cups 1.1.5-1
Apple Cups 1.1.5
Apple Cups 1.1.9
Apple Cups 1.1.9-1
Apple Cups 1.1.16
Apple Cups 1.1.15
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.22
Apple Cups 1.2.1
Apple Cups 1.2.0
Apple Cups 1.3.9
Apple Cups 1.2.7
Apple Cups 1.3
Apple Cups 1.3.8
Apple Cups 1.3.7
Apple Cups 1.1.5-2
Apple Cups 1.1.6
Apple Cups 1.1.10-1
Apple Cups 1.1.10
Apple Cups 1.1.18
NA
CVE-2010-1748
The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS prior to 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 prior to 10.6.4, and other platforms, does not properly handle parameter values containing a % (percent) character without two subseque...
Apple Cups 1.1.6
Apple Cups 1.1.6-1
Apple Cups 1.1.10
Apple Cups 1.1.6-3
Apple Cups 1.1.17
Apple Cups 1.1.12
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.21
Apple Cups 1.2
Apple Cups 1.2.5
Apple Cups 1.2.4
Apple Cups 1.2.9
Apple Cups 1.2.10
Apple Cups 1.3.0
Apple Cups 1.4.0
Apple Cups 1.3.7
Apple Cups 1.3.10
Apple Cups 1.3.6
Apple Cups 1.1.2
Apple Cups 1.1.3
Apple Cups 1.1.4
1 EDB exploit
NA
CVE-2010-0393
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted local...
Apple Cups 1.2.2
Apple Cups 1.4.1
Apple Cups 1.3.7
Apple Cups 1.3.9
NA
CVE-2009-0163
Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and previous versions allows remote malicious users to cause a denial of service (daemon crash) and possibly execute arbitrary code via a crafted TIFF image, which is not properly handled by the (1) _cupsImageRead...
Apple Cups 1.3.6
Apple Cups 1.1.3
Apple Cups 1.1.4
Apple Cups 1.1.6-2
Apple Cups 1.1.8
Apple Cups 1.1.11
Apple Cups 1.1.14
Apple Cups 1.1.19
Apple Cups 1.1.20
Apple Cups 1.1.21
Apple Cups 1.2
Apple Cups 1.1.23
Apple Cups 1.2.2
Apple Cups 1.2.6
Apple Cups 1.3
Apple Cups 1.3.5
Apple Cups 1.3.8
Apple Cups 1.1.5-1
Apple Cups 1.1.5-2
Apple Cups 1.1.9-1
Apple Cups 1.1.10-1
Apple Cups 1.1.15
NA
CVE-2009-0166
The JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, and other products allows remote malicious users to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.93b
Foolabs Xpdf 0.92a
Glyphandcog Xpdfreader 0.92
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.7
Glyphandcog Xpdfreader
Foolabs Xpdf 1.00a
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.92b
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.80
Glyphandcog Xpdfreader 0.2
Glyphandcog Xpdfreader 2.01
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.92e
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.91a
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »