Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-5519HistoryNov 20, 2012 - 12:55 a.m.
CVE-2012-5519
2012-11-2000:55:00
Debian Security Bug Tracker
security-tracker.debian.org
17
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
45.7%
CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | < 1.5.3-2.7 | cups_1.5.3-2.7_all.deb |
| Debian | 11 | all | cups | < 1.5.3-2.7 | cups_1.5.3-2.7_all.deb |
| Debian | 10 | all | cups | < 1.5.3-2.7 | cups_1.5.3-2.7_all.deb |
| Debian | 999 | all | cups | < 1.5.3-2.7 | cups_1.5.3-2.7_all.deb |
| Debian | 13 | all | cups | < 1.5.3-2.7 | cups_1.5.3-2.7_all.deb |
Related
openvas
openvas
CentOS Update for cups CESA-2013:0580 centos5
2013-03-05 00:00:00
Debian: Security Advisory (DSA-2600-1)
2013-01-05 00:00:00
Mandriva Update for cups MDVSA-2012:179 (cups)
2012-12-14 00:00:00
nessus
nessus
RHEL 5 / 6 : cups (RHSA-2013:0580)
2013-03-01 00:00:00
Amazon Linux AMI : cups (ALAS-2013-170)
2013-09-04 00:00:00
Fedora 18 : cups-1.5.4-20.fc18 (2012-19301)
2013-01-14 00:00:00
redhat
redhat
(RHSA-2013:0580) Moderate: cups security update
2013-02-28 00:00:00
ubuntucve
ubuntucve
CVE-2012-5519
2012-11-19 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: cups-1.5.4-20.fc18
2013-01-12 01:01:29
[SECURITY] Fedora 17 Update: cups-1.5.4-18.fc17
2013-02-26 02:42:00
ubuntu
ubuntu
CUPS vulnerability
2012-12-05 00:00:00
prion
prion
Design/Logic Flaw
2012-11-20 00:55:00
debian
debian
[SECURITY] [DSA 2600-1] cups security update
2013-01-06 17:33:19
oraclelinux
oraclelinux
cups security update
2013-02-28 00:00:00
securityvulns
securityvulns
[USN-1654-1] CUPS vulnerability
2012-12-07 00:00:00
CUPS privilege escalation
2012-12-07 00:00:00
Apple Mac OS X multiple security vulnerabilities
2013-06-17 00:00:00
amazon
amazon
Medium: cups
2013-03-14 22:04:00
gentoo
gentoo
CUPS: Arbitrary file read/write
2014-04-07 00:00:00
centos
centos
cups security update
2013-03-01 10:00:14
veracode
veracode
Arbitrary File Write
2019-01-15 08:58:43
osv
osv
cups - privilege escalation
2013-01-06 00:00:00
cve
cve
CVE-2012-5519
2012-11-20 00:55:00
suse
suse
Security update for cups154 (critical)
2015-06-11 20:06:22
Security update for cups (critical)
2015-06-11 17:05:04
Security update for cups (critical)
2015-06-12 21:05:05
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
45.7%
Related for DEBIANCVE:CVE-2012-5519