NA

CVE-2008-1722

Published: 10/04/2008 Updated: 03/10/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Summary

Multiple integer overflows in (1) filter/image-png.c and (2) filter/image-zoom.c in CUPS 1.3 allow malicious users to cause a denial of service (crash) and trigger memory corruption, as demonstrated via a crafted PNG image.

Affected Products

Vendor Product Versions
CupsCups1.3

Vendor Advisories

Synopsis Moderate: cups security update Type/Severity Security Advisory: Moderate Topic Updated cups packages that fix a security issue are now available for RedHat Enterprise Linux 3This update has been rated as having moderate security impact by the RedHat Security Response Team Description ...
Debian Bug report logs - #476305 cupsys: CVE-2008-1722 remote DoS Package: cupsys; Maintainer for cupsys is (unknown); Reported by: Nico Golde <nion@debianorg> Date: Tue, 15 Apr 2008 18:15:03 UTC Severity: grave Tags: patch, security Fixed in version cupsys/137-2 Done: Martin Pitt <mpitt@debianorg> Bug is arch ...
Thomas Pollet discovered that CUPS did not properly validate the size of PNG images A local attacker, and a remote attacker if printer sharing is enabled, could send a crafted file and cause a denial of service or possibly execute arbitrary code as the non-root user in Ubuntu 606 LTS and 704 In Ubuntu 710, attackers would be isolated by the Ap ...
Debian Bug report logs - #507183 cups: integer overflow via validation code in of the image size Package: cups; Maintainer for cups is Debian Printing Team <debian-printing@listsdebianorg>; Source for cups is src:cups (PTS, buildd, popcon) Reported by: Steffen Joeris <steffenjoeris@skolelinuxde> Date: Fri, 28 Nov ...
It was discovered that the SGI image filter in CUPS did not perform proper bounds checking If a user or automated system were tricked into opening a crafted SGI image, an attacker could cause a denial of service (CVE-2008-3639) ...
Several remote vulnerabilities have been discovered in the Common Unix Printing System (CUPS) The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-0053 Buffer overflows in the HP-GL input filter allowed to possibly run arbitrary code through crafted HP-GL files CVE-2008-1373 Buffer overflow in ...