Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.8
CVSSv2

CVE-2014-4336

Published: 22/06/2014 Updated: 03/01/2018
CVSS v2 Base Score: 5.8 | Impact Score: 6.4 | Exploitability Score: 6.5
VMScore: 516
Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Linuxfoundation

Vulnerability Summary

The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters prior to 1.0.53 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the host name. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.

Vulnerable Product Search on Vulmon Subscribe to Product

linuxfoundation cups-filters

Vendor Advisories

Red Hat: CVE-2014-4336
The generate_local_queue function in utils/cups-browsedc in cups-browsed in cups-filters before 1053 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the host name NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707 ...

References

CWE-77http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7194http://openwall.com/lists/oss-security/2014/04/25/7http://openwall.com/lists/oss-security/2014/06/19/12https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2014-4336
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000CVE-2024-4439unauthorizedCVE-2024-0042CVE-2024-31848CVE-2023-40694cache poisoningCVE-2024-23707firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook