Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS prior to 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 prior to 10.6.4, and other platforms, allows remote malicious users to hijack the authentication of administrators for requests that change settings.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.6.1 |
||
apple mac os x server 10.6.0 |
||
apple mac os x 10.5.8 |
||
apple mac os x 10.6.0 |
||
apple mac os x server 10.6.2 |
||
apple mac os x server 10.6.3 |
||
apple mac os x 10.6.3 |
||
apple mac os x server 10.5.8 |
||
apple mac os x server 10.6.1 |
||
apple mac os x 10.6.2 |