Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a need authorization page, as demonstrated by new-coke.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cups | Easy_software_products | 1.1.10 | 1.1.10 |
Cups | Easy_software_products | 1.1.7 | 1.1.7 |
Cups | Easy_software_products | 1.0.4_8 | 1.0.4_8 |
Cups | Easy_software_products | 1.1.13 | 1.1.13 |
Cups | Easy_software_products | 1.1.17 | 1.1.17 |
Cups | Easy_software_products | 1.1.4_3 | 1.1.4_3 |
Cups | Easy_software_products | 1.1.4 | 1.1.4 |
Cups | Easy_software_products | 1.1.4_5 | 1.1.4_5 |
Cups | Easy_software_products | 1.1.1 | 1.1.1 |
Cups | Easy_software_products | 1.0.4 | 1.0.4 |
Cups | Easy_software_products | 1.1.14 | 1.1.14 |
Cups | Easy_software_products | 1.1.4_2 | 1.1.4_2 |
Cups | Easy_software_products | 1.1.6 | 1.1.6 |