Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Cups | Easy_software_products | 1.0.4 (including) | 1.0.4 (including) |
| Cups | Easy_software_products | 1.0.4_8 (including) | 1.0.4_8 (including) |
| Cups | Easy_software_products | 1.1.1 (including) | 1.1.1 (including) |
| Cups | Easy_software_products | 1.1.4 (including) | 1.1.4 (including) |
| Cups | Easy_software_products | 1.1.4_2 (including) | 1.1.4_2 (including) |
| Cups | Easy_software_products | 1.1.4_3 (including) | 1.1.4_3 (including) |
| Cups | Easy_software_products | 1.1.4_5 (including) | 1.1.4_5 (including) |
| Cups | Easy_software_products | 1.1.6 (including) | 1.1.6 (including) |
| Cups | Easy_software_products | 1.1.7 (including) | 1.1.7 (including) |
| Cups | Easy_software_products | 1.1.10 (including) | 1.1.10 (including) |
| Cups | Easy_software_products | 1.1.13 (including) | 1.1.13 (including) |
| Cups | Easy_software_products | 1.1.14 (including) | 1.1.14 (including) |
| Cups | Easy_software_products | 1.1.17 (including) | 1.1.17 (including) |
| Red Hat Linux 7.3 | RedHat | * | |
| Red Hat Linux 8.0 | RedHat | * |
References
- ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html
- http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2
- http://secunia.com/advisories/7756/
- http://secunia.com/advisories/7794
- http://secunia.com/advisories/7803
- http://secunia.com/advisories/7843
- http://secunia.com/advisories/7858
- http://secunia.com/advisories/7907
- http://secunia.com/advisories/7913/
- http://secunia.com/advisories/8080/
- http://secunia.com/advisories/9325/
- http://www.idefense.com/advisory/12.19.02.txt
- http://www.novell.com/linux/security/advisories/2003_002_cups.html
- http://www.redhat.com/support/errata/RHSA-2002-295.html
- ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html
- http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2
- http://secunia.com/advisories/7756/
- http://secunia.com/advisories/7794
- http://secunia.com/advisories/7803
- http://secunia.com/advisories/7843
- http://secunia.com/advisories/7858
- http://secunia.com/advisories/7907
- http://secunia.com/advisories/7913/
- http://secunia.com/advisories/8080/
- http://secunia.com/advisories/9325/
- http://www.idefense.com/advisory/12.19.02.txt
- http://www.novell.com/linux/security/advisories/2003_002_cups.html
- http://www.redhat.com/support/errata/RHSA-2002-295.html