Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.8
CVSSv2

CVE-2008-1373

Published: 04/04/2008 Updated: 11/10/2018
CVSS v2 Base Score: 5.8 | Impact Score: 6.4 | Exploitability Score: 6.5
VMScore: 516
Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Easy Software Products

Vulnerability Summary

Buffer overflow in the gif_read_lzw function in CUPS 1.3.6 allows remote malicious users to have an unknown impact via a GIF file with a large code_size value, a similar issue to CVE-2006-4484.

Vulnerable Product Search on Vulmon Subscribe to Product

easy software products cups 1.3.6

Vendor Advisories

Ubuntu Security Notice: cupsys vulnerabilities
It was discovered that the CUPS administration interface contained a heap- based overflow flaw A local attacker, and a remote attacker if printer sharing is enabled, could send a malicious request and possibly execute arbitrary code as the non-root user in Ubuntu 606 LTS, 610, and 704 In Ubuntu 710, attackers would be isolated by the AppArmor ...
Debian Security Advisories: DSA-1625-1 cupsys -- buffer overflows
Several remote vulnerabilities have been discovered in the Common Unix Printing System (CUPS) The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-0053 Buffer overflows in the HP-GL input filter allowed to possibly run arbitrary code through crafted HP-GL files CVE-2008-1373 Buffer overflow in ...

References

CWE-119http://www.cups.org/str.php?L2765http://security.gentoo.org/glsa/glsa-200804-01.xmlhttp://www.redhat.com/support/errata/RHSA-2008-0192.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0206.htmlhttp://www.securityfocus.com/bid/28544http://www.securitytracker.com/id?1019739http://secunia.com/advisories/29634http://wiki.rpath.com/Advisories:rPSA-2008-0136http://www.mandriva.com/security/advisories?name=MDVSA-2008:081http://www.ubuntu.com/usn/usn-598-1http://secunia.com/advisories/29661http://secunia.com/advisories/29573http://secunia.com/advisories/29603http://secunia.com/advisories/29630http://secunia.com/advisories/29655https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00091.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-April/msg00105.htmlhttp://secunia.com/advisories/29750http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00003.htmlhttp://secunia.com/advisories/29659http://secunia.com/advisories/31324http://www.debian.org/security/2008/dsa-1625http://www.vupen.com/english/advisories/2008/1059/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/41587https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11479http://www.securityfocus.com/archive/1/490486/100/0/threadedhttps://usn.ubuntu.com/598-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook