CVE Vulnerabilities

CVE-2002-1367

Published: Dec 26, 2002 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a need authorization page, as demonstrated by new-coke.

Affected Software

Name Vendor Start Version End Version
Cups Easy_software_products 1.0.4 1.0.4
Cups Easy_software_products 1.0.4_8 1.0.4_8
Cups Easy_software_products 1.1.1 1.1.1
Cups Easy_software_products 1.1.4 1.1.4
Cups Easy_software_products 1.1.4_2 1.1.4_2
Cups Easy_software_products 1.1.4_3 1.1.4_3
Cups Easy_software_products 1.1.4_5 1.1.4_5
Cups Easy_software_products 1.1.6 1.1.6
Cups Easy_software_products 1.1.7 1.1.7
Cups Easy_software_products 1.1.10 1.1.10
Cups Easy_software_products 1.1.13 1.1.13
Cups Easy_software_products 1.1.14 1.1.14
Cups Easy_software_products 1.1.17 1.1.17

References