Lucene search

[email protected]NVD:CVE-2013-6476

HistoryMar 14, 2014 - 3:55 p.m.

CVE-2013-6476

2014-03-1415:55:05

CWE-264

[email protected]

web.nvd.nist.gov

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.

Affected configurations

NVD

Node

canonicalubuntu_linuxMatch10.04-lts

canonicalubuntu_linuxMatch12.04-lts

canonicalubuntu_linuxMatch12.10

canonicalubuntu_linuxMatch13.10

debiandebian_linux

fedoraprojectfedora

Node

linuxfoundationcups-filtersRange≤1.0.46

linuxfoundationcups-filtersMatch1.0

linuxfoundationcups-filtersMatch1.0.1

linuxfoundationcups-filtersMatch1.0.2

linuxfoundationcups-filtersMatch1.0.3

linuxfoundationcups-filtersMatch1.0.4

linuxfoundationcups-filtersMatch1.0.5

linuxfoundationcups-filtersMatch1.0.6

linuxfoundationcups-filtersMatch1.0.7

linuxfoundationcups-filtersMatch1.0.8

linuxfoundationcups-filtersMatch1.0.9

linuxfoundationcups-filtersMatch1.0.10

linuxfoundationcups-filtersMatch1.0.11

linuxfoundationcups-filtersMatch1.0.12

linuxfoundationcups-filtersMatch1.0.13

linuxfoundationcups-filtersMatch1.0.14

linuxfoundationcups-filtersMatch1.0.15

linuxfoundationcups-filtersMatch1.0.16

linuxfoundationcups-filtersMatch1.0.17

linuxfoundationcups-filtersMatch1.0.18

linuxfoundationcups-filtersMatch1.0.19

linuxfoundationcups-filtersMatch1.0.20

linuxfoundationcups-filtersMatch1.0.21

linuxfoundationcups-filtersMatch1.0.22

linuxfoundationcups-filtersMatch1.0.23

linuxfoundationcups-filtersMatch1.0.24

linuxfoundationcups-filtersMatch1.0.25

linuxfoundationcups-filtersMatch1.0.26

linuxfoundationcups-filtersMatch1.0.27

linuxfoundationcups-filtersMatch1.0.28

linuxfoundationcups-filtersMatch1.0.29

linuxfoundationcups-filtersMatch1.0.30

linuxfoundationcups-filtersMatch1.0.31

linuxfoundationcups-filtersMatch1.0.32

linuxfoundationcups-filtersMatch1.0.33

linuxfoundationcups-filtersMatch1.0.34

linuxfoundationcups-filtersMatch1.0.35

linuxfoundationcups-filtersMatch1.0.36

linuxfoundationcups-filtersMatch1.0.37

linuxfoundationcups-filtersMatch1.0.38

linuxfoundationcups-filtersMatch1.0.39

linuxfoundationcups-filtersMatch1.0.40

linuxfoundationcups-filtersMatch1.0.41

linuxfoundationcups-filtersMatch1.0.42

linuxfoundationcups-filtersMatch1.0.43

linuxfoundationcups-filtersMatch1.0.44

linuxfoundationcups-filtersMatch1.0.45

References

bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176

www.debian.org/security/2014/dsa-2875

www.debian.org/security/2014/dsa-2876

www.ubuntu.com/usn/USN-2143-1

www.ubuntu.com/usn/USN-2144-1

bugzilla.redhat.com/show_bug.cgi?id=1027551

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2013-6476

cve1 debiancve1 cvelist1 ubuntucve1 prion1 seebug1 openvas12 nessus7 ubuntu2 debian2 osv2 fedora1 securityvulns4 mageia1 gentoo1 rosalinux1