Lucene search

[email protected]CVE-2014-4337

HistoryJun 22, 2014 - 9:55 p.m.

CVE-2014-4337

2014-06-2221:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2014-4337

security

denial of service

cups-filters

out-of-bounds read

application crash

remote attackers

6.3 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.006 Low

EPSS

Percentile

78.5%

JSON

The process_browse_data function in utils/cups-browsed.c in cups-browsed in cups-filters before 1.0.53 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted packet data.

CPENameOperatorVersion
linuxfoundation:cups-filterslinuxfoundation cups-filtersle1.0.52

CPE	Name	Operator	Version
linuxfoundation:cups-filters	linuxfoundation cups-filters	le	1.0.52

References

bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7194

openwall.com/lists/oss-security/2014/06/19/12

rhn.redhat.com/errata/RHSA-2014-1795.html

secunia.com/advisories/62044

www.securityfocus.com/bid/68122

6.3 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.006 Low

EPSS

Percentile

78.5%

JSON

Related for CVE-2014-4337

ubuntucve1 cvelist1 debiancve1 prion1 nessus5 centos1 oraclelinux2 redhat1 openvas5 mageia1 securityvulns2