Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2008-0882

Published: 21/02/2008 Updated: 29/09/2017
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Cups

Vulnerability Summary

Double free vulnerability in the process_browse_data function in CUPS 1.3.5 allows remote malicious users to cause a denial of service (daemon crash) and possibly execute arbitrary code via crafted UDP Browse packets to the cupsd port (631/udp), related to an unspecified manipulation of a remote printer. NOTE: some of these details are obtained from third party information.

Vulnerable Product Search on Vulmon Subscribe to Product

cups cups 1.3.5

Vendor Advisories

Ubuntu Security Notice: cupsys vulnerabilities
It was discovered that the CUPS administration interface contained a heap- based overflow flaw A local attacker, and a remote attacker if printer sharing is enabled, could send a malicious request and possibly execute arbitrary code as the non-root user in Ubuntu 606 LTS, 610, and 704 In Ubuntu 710, attackers would be isolated by the AppArmor ...
Debian CVElist Bug Report Logs: cupsys: CVE-2008-0882 remote denial of service
Debian Bug report logs - #467653 cupsys: CVE-2008-0882 remote denial of service Package: cupsys; Maintainer for cupsys is (unknown); Reported by: Nico Golde <nion@debianorg> Date: Tue, 26 Feb 2008 18:09:03 UTC Severity: grave Tags: patch, security Found in version cupsys/135-1 Fixed in versions cupsys/136-1, cupsys/1 ...
Debian CVElist Bug Report Logs: cupsys: CVE-2008-0047 buffer overflow in cgi applications using crafted search queries
Debian Bug report logs - #472105 cupsys: CVE-2008-0047 buffer overflow in cgi applications using crafted search queries Package: cupsys; Maintainer for cupsys is (unknown); Reported by: Nico Golde <nion@debianorg> Date: Sat, 22 Mar 2008 02:24:01 UTC Severity: grave Tags: patch, security Fixed in versions cupsys/136-3, ...
Debian Security Advisories: DSA-1530-1 cupsys -- Several vulnerabilities
Several local/remote vulnerabilities have been discovered in cupsys, the Common Unix Printing System The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-0047 Heap-based buffer overflow in CUPS, when printer sharing is enabled, allows remote attackers to execute arbitrary code via crafted search expression ...

References

CWE-119http://www.cups.org/str.php?L2656http://secunia.com/advisories/28994http://www.redhat.com/support/errata/RHSA-2008-0157.htmlhttp://www.securityfocus.com/bid/27906http://www.securitytracker.com/id?1019473http://secunia.com/advisories/29067https://bugzilla.redhat.com/show_bug.cgi?id=433758https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00792.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-February/msg00832.htmlhttp://secunia.com/advisories/29120http://www.mandriva.com/security/advisories?name=MDVSA-2008:050http://www.mandriva.com/security/advisories?name=MDVSA-2008:051http://secunia.com/advisories/29132http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00000.htmlhttp://secunia.com/advisories/29251http://docs.info.apple.com/article.html?artnum=307562http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.htmlhttp://www.debian.org/security/2008/dsa-1530http://secunia.com/advisories/29420http://secunia.com/advisories/29485http://security.gentoo.org/glsa/glsa-200804-01.xmlhttp://secunia.com/advisories/29634http://www.ubuntu.com/usn/usn-598-1http://secunia.com/advisories/29603http://www.vupen.com/english/advisories/2008/0623http://www.vupen.com/english/advisories/2008/0924/referenceshttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9625https://usn.ubuntu.com/598-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook