Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1625-1
HistoryAug 01, 2008 - 12:00 a.m.

cupsys - arbitrary code execution

2008-08-0100:00:00
Google
osv.dev
12

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.95 High

EPSS

Percentile

99.0%

JSON

Several remote vulnerabilities have been discovered in the Common Unix
Printing System (CUPS). The Common Vulnerabilities and Exposures project
identifies the following problems:

  • CVE-2008-0053
    Buffer overflows in the HP-GL input filter allowed to possibly run
    arbitrary code through crafted HP-GL files.
  • CVE-2008-1373
    Buffer overflow in the GIF filter allowed to possibly run arbitrary
    code through crafted GIF files.
  • CVE-2008-1722
    Integer overflows in the PNG filter allowed to possibly run arbitrary
    code through crafted PNG files.

For the stable distribution (etch), these problems have been fixed in
version 1.2.7-4etch4 of package cupsys.

For the testing (lenny) and unstable distribution (sid), these problems
have been fixed in version 1.3.7-2 of package cups.

We recommend that you upgrade your cupsys package.

Related

debian 1
openvas 79
nessus 34
suse 1
oraclelinux 4
redhat 3
centos 3
securityvulns 4
ubuntu 3
gentoo 2
fedora 14
seebug 3
veracode 3
cve 3
checkpoint_advisories 2
prion 3
ubuntucve 3
debiancve 3
cert 1
slackware 1
debian
debian
[SECURITY] [DSA 1625-1] New cupsys packages fix arbitrary code execution
2008-08-01 07:52:06
openvas
openvas
Debian: Security Advisory (DSA-1625-1)
2008-08-15 00:00:00
Debian Security Advisory DSA 1625-1 (cupsys)
2008-08-15 00:00:00
SuSE Update for cups SUSE-SA:2008:020
2009-01-23 00:00:00
nessus
nessus
Debian DSA-1625-1 : cupsys - buffer overflows
2008-08-01 00:00:00
SuSE9 Security Update : CUPS (YOU Patch Number 12117)
2009-09-24 00:00:00
openSUSE 10 Security Update : cups (cups-5117)
2008-04-04 00:00:00
suse
suse
remote code execution in cups
2008-04-04 16:22:43
oraclelinux
oraclelinux
cups security update
2008-04-01 00:00:00
cups security update
2008-04-01 00:00:00
cups security update
2008-06-04 00:00:00
redhat
redhat
(RHSA-2008:0192) Moderate: cups security update
2008-04-01 00:00:00
(RHSA-2008:0206) Moderate: cups security update
2008-04-01 00:00:00
(RHSA-2008:0498) Moderate: cups security update
2008-06-04 00:00:00
centos
centos
cups security update
2008-04-02 10:39:09
cups security update
2008-04-01 17:06:38
cups security update
2008-06-04 15:45:37
securityvulns
securityvulns
[USN-598-1] CUPS vulnerabilities
2008-04-03 00:00:00
[USN-606-1] CUPS vulnerability
2008-05-06 00:00:00
CUPS code execution with GIF files
2008-04-03 00:00:00
ubuntu
ubuntu
CUPS vulnerabilities
2008-04-02 00:00:00
CUPS vulnerability
2008-05-05 00:00:00
CUPS vulnerabilities
2008-10-15 00:00:00
gentoo
gentoo
CUPS: Multiple vulnerabilities
2008-04-01 00:00:00
CUPS: Integer overflow vulnerability
2008-04-18 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: cups-1.3.9-1.fc9
2008-10-16 02:08:34
[SECURITY] Fedora 9 Update: cups-1.3.7-2.fc9
2008-05-13 15:24:59
[SECURITY] Fedora 7 Update: cups-1.2.12-11.fc7
2008-05-10 13:55:52
seebug
seebug
CUPS gif_read_lzw()函数GIF文件处理缓冲区溢出漏洞
2008-04-03 00:00:00
CUPS PNG过滤器多个整数溢出漏洞
2008-04-17 00:00:00
Apple Mac OS X 2008-002更新修复多个安全漏洞
2008-03-20 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:29:04
Arbitrary Code Execution
2020-04-10 00:20:34
Arbitrary Code Execution
2020-04-10 00:20:33
cve
cve
CVE-2008-1722
2008-04-10 19:05:00
CVE-2008-0053
2008-03-18 23:44:00
CVE-2008-1373
2008-04-04 00:44:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Buffer Overflow Vulnerability in Common Unix Printing System (CUPS)
2008-04-25 00:00:00
Multiple Vendor CUPS GIF Decoding Routine Buffer Overflow (CVE-2008-1373)
2009-10-14 00:00:00
prion
prion
Buffer overflow
2008-03-18 23:44:00
Integer overflow
2008-04-10 19:05:00
Buffer overflow
2008-04-04 00:44:00
ubuntucve
ubuntucve
CVE-2008-0053
2008-03-18 00:00:00
CVE-2008-1722
2008-04-10 00:00:00
CVE-2008-1373
2008-04-04 00:00:00
debiancve
debiancve
CVE-2008-0053
2008-03-18 23:44:00
CVE-2008-1722
2008-04-10 19:05:00
CVE-2008-1373
2008-04-04 00:44:00
cert
cert
CUPS integer overflow vulnerability
2008-04-25 00:00:00
slackware
slackware
[slackware-security] cups
2008-04-03 07:53:48

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.95 High

EPSS

Percentile

99.0%

JSON
Related for OSV:DSA-1625-1
debian1openvas79nessus34suse1oraclelinux4redhat3centos3securityvulns4ubuntu3gentoo2fedora14seebug3veracode3cve3checkpoint_advisories2prion3ubuntucve3debiancve3cert1slackware1