Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a need authorization page, as demonstrated by new-coke.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Cups | Easy_software_products | 1.0.4 (including) | 1.0.4 (including) |
| Cups | Easy_software_products | 1.0.4_8 (including) | 1.0.4_8 (including) |
| Cups | Easy_software_products | 1.1.1 (including) | 1.1.1 (including) |
| Cups | Easy_software_products | 1.1.4 (including) | 1.1.4 (including) |
| Cups | Easy_software_products | 1.1.4_2 (including) | 1.1.4_2 (including) |
| Cups | Easy_software_products | 1.1.4_3 (including) | 1.1.4_3 (including) |
| Cups | Easy_software_products | 1.1.4_5 (including) | 1.1.4_5 (including) |
| Cups | Easy_software_products | 1.1.6 (including) | 1.1.6 (including) |
| Cups | Easy_software_products | 1.1.7 (including) | 1.1.7 (including) |
| Cups | Easy_software_products | 1.1.10 (including) | 1.1.10 (including) |
| Cups | Easy_software_products | 1.1.13 (including) | 1.1.13 (including) |
| Cups | Easy_software_products | 1.1.14 (including) | 1.1.14 (including) |
| Cups | Easy_software_products | 1.1.17 (including) | 1.1.17 (including) |
| Red Hat Linux 7.3 | RedHat | * | |
| Red Hat Linux 8.0 | RedHat | * |