Published: 09/06/2009 Updated: 09/02/2024

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The ippReadIO function in cups/ipp.c in cupsd in CUPS prior to 1.3.10 does not properly initialize memory for IPP request packets, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple cups
canonical ubuntu linux 9.04
canonical ubuntu linux 8.10
canonical ubuntu linux 8.04
canonical ubuntu linux 6.06
debian debian linux 5.0
debian debian linux 4.0
debian debian linux 6.0
apple mac os x server
apple mac os x
opensuse opensuse 10.3
suse linux enterprise 10.0
suse linux enterprise 9.0

Anibal Sacco discovered that CUPS did not properly handle certain network operations A remote attacker could exploit this flaw and cause the CUPS server to crash, resulting in a denial of service ...

Synopsis Important: cups security update Type/Severity Security Advisory: Important Topic Updated cups packages that fix multiple security issues are now availablefor Red Hat Enterprise Linux 3 and 4This update has been rated as having important security impact by the RedHat Security Response Team ...

Synopsis Important: cups security update Type/Severity Security Advisory: Important Topic Updated cups packages that fix one security issue are now available for RedHat Enterprise Linux 5This update has been rated as having important security impact by the RedHat Security Response Team Descriptio ...

Anibal Sacco discovered that cups, a general printing system for UNIX systems, suffers from null pointer dereference because of its handling of two consecutive IPP packets with certain tag attributes that are treated as IPP_TAG_UNSUPPORTED tags This allows unauthenticated attackers to perform denial of service attacks by crashing the cups daemon ...

source: wwwsecurityfocuscom/bid/35169/info CUPS is prone to a denial-of-service vulnerability because of a NULL-pointer dereference that occurs when processing two consecutive IPP_TAG_UNSUPPORTED tags in specially crafted IPP (Internet Printing Protocal) packets An attacker can exploit this issue to crash the affected application, denyi ...

CWE-908 http://www.securityfocus.com/bid/35169 http://www.coresecurity.com/content/AppleCUPS-null-pointer-vulnerability http://www.redhat.com/support/errata/RHSA-2009-1082.html https://bugzilla.redhat.com/show_bug.cgi?id=500972 http://www.ubuntu.com/usn/USN-780-1 http://www.redhat.com/support/errata/RHSA-2009-1083.html http://secunia.com/advisories/35322 http://secunia.com/advisories/35340 http://www.debian.org/security/2009/dsa-1811 http://securitytracker.com/id?1022321 http://secunia.com/advisories/35328 http://secunia.com/advisories/35342 http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html http://secunia.com/advisories/35685 http://secunia.com/advisories/36701 http://support.apple.com/kb/HT3865 http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html https://exchange.xforce.ibmcloud.com/vulnerabilities/50926 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9631 http://www.securityfocus.com/archive/1/504032/100/0/threaded https://usn.ubuntu.com/780-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/33020/

CVE-2009-0949

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect