Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2002-1368

Published: 26/12/2002 Updated: 11/07/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Easy Software Products

Vulnerability Summary

Common Unix Printing System (CUPS) 1.1.14 up to and including 1.1.17 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding.

Vulnerable Product Search on Vulmon Subscribe to Product

easy software products cups 1.1.13

easy software products cups 1.1.14

easy software products cups 1.0.4

easy software products cups 1.0.4_8

easy software products cups 1.1.4_2

easy software products cups 1.1.4_3

easy software products cups 1.1.4_5

easy software products cups 1.1.17

easy software products cups 1.1.4

easy software products cups 1.1.1

easy software products cups 1.1.10

easy software products cups 1.1.6

easy software products cups 1.1.7

apple mac os x 10.2

apple mac os x 10.2.2

Vendor Advisories

Debian Security Advisories: DSA-232-1 cupsys -- several vulnerabilities
Multiple vulnerabilities were discovered in the Common Unix Printing System (CUPS) Several of these issues represent the potential for a remote compromise or denial of service The Common Vulnerabilities and Exposures project identifies the following problems: CAN-2002-1383: Multiple integer overflows allow a remote attacker to execute arbitr ...

Exploits

Exploit DB: CUPS 1.1.x - Negative Length HTTP Header
source: wwwsecurityfocuscom/bid/6437/info A vulnerability has been reported for CUPS that if exploited may result in a DoS or the execute of code on affected systems An attacker can exploit this vulnerability by connecting to a vulnerable system and issuing malformed HTTP headers with a negative value for some fields When the cupsd ser ...

References

NVD-CWE-Otherhttp://www.idefense.com/advisory/12.19.02.txthttp://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.htmlhttp://www.debian.org/security/2003/dsa-232http://www.redhat.com/support/errata/RHSA-2002-295.htmlhttp://www.novell.com/linux/security/advisories/2003_002_cups.htmlhttp://www.securityfocus.com/bid/6437http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000702ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2003:001http://secunia.com/advisories/7907http://secunia.com/advisories/7756/http://secunia.com/advisories/7794http://secunia.com/advisories/7803http://secunia.com/advisories/7843http://secunia.com/advisories/7858http://secunia.com/advisories/7913/http://secunia.com/advisories/8080/http://secunia.com/advisories/9325/http://marc.info/?l=bugtraq&m=104032149026670&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/10909https://nvd.nist.govhttps://www.debian.org/security/./dsa-232https://www.exploit-db.com/exploits/22106/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook