The is_path_absolute function in scheduler/client.c for the daemon in CUPS prior to 1.1.23 allows remote malicious users to cause a denial of service (CPU consumption by tight loop) via a "..\.." URL in an HTTP request.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
easy software products cups 1.1 |
||
easy software products cups 1.1.1 |
||
easy software products cups 1.1.16 |
||
easy software products cups 1.1.17 |
||
easy software products cups 1.1.19_rc5 |
||
easy software products cups 1.1.2 |
||
easy software products cups 1.1.20_rc6 |
||
easy software products cups 1.1.21 |
||
easy software products cups 1.1.5 |
||
easy software products cups 1.1.5_1 |
||
easy software products cups 1.1.8 |
||
easy software products cups 1.1.9 |
||
easy software products cups 1.1.12 |
||
easy software products cups 1.1.13 |
||
easy software products cups 1.1.19_rc1 |
||
easy software products cups 1.1.19_rc2 |
||
easy software products cups 1.1.20_rc2 |
||
easy software products cups 1.1.20_rc3 |
||
easy software products cups 1.1.22_rc1 |
||
easy software products cups 1.1.22_rc2 |
||
easy software products cups 1.1.6_1 |
||
easy software products cups 1.1.6_2 |
||
easy software products cups 1.1.10 |
||
easy software products cups 1.1.10_1 |
||
easy software products cups 1.1.11 |
||
easy software products cups 1.1.18 |
||
easy software products cups 1.1.19 |
||
easy software products cups 1.1.20 |
||
easy software products cups 1.1.20_rc1 |
||
easy software products cups 1.1.21_rc1 |
||
easy software products cups 1.1.21_rc2 |
||
easy software products cups 1.1.22 |
||
easy software products cups 1.1.5_2 |
||
easy software products cups 1.1.6 |
||
easy software products cups 1.1.9_1 |
||
easy software products cups 1.1.14 |
||
easy software products cups 1.1.15 |
||
easy software products cups 1.1.19_rc3 |
||
easy software products cups 1.1.19_rc4 |
||
easy software products cups 1.1.20_rc4 |
||
easy software products cups 1.1.20_rc5 |
||
easy software products cups 1.1.3 |
||
easy software products cups 1.1.4 |
||
easy software products cups 1.1.6_3 |
||
easy software products cups 1.1.7 |
Vulmon