CVE Vulnerabilities

CVE-2009-0577

Published: Feb 20, 2009 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
5.8 IMPORTANT
AV:A/AC:L/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu

Integer overflow in the WriteProlog function in texttops in CUPS 1.1.17 on Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2008-3640.

Affected Software

Name Vendor Start Version End Version
Cups Apple 1.1.17 (including) 1.1.17 (including)
Red Hat Enterprise Linux 3 RedHat cups-1:1.1.17-13.3.56 *

References