CUPS Unspecified DoS

2003-11-03T08:59:16
ID OSVDB:2761
Type osvdb
Reporter OSVDB
Modified 2003-11-03T08:59:16

Description

Vulnerability Description

CUPS V1.1.19 contains a flaw that may allow a local denial of service. The issue is triggered when a malicious user connects to TCP port 631 (IPP) and cause IPP to enter into an infinite loop.

Technical Description

CUPS (Common Unix Printing System) is a Unix print spooler.

Solution Description

Upgrade to version 1.2 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): Restrict access to ensure that only trusted users can access the service.

Short Description

CUPS V1.1.19 contains a flaw that may allow a local denial of service. The issue is triggered when a malicious user connects to TCP port 631 (IPP) and cause IPP to enter into an infinite loop.

References:

Vendor URL: http://www.cups.org/ Secunia Advisory ID:10123 ISS X-Force ID: 13584 CVE-2003-0788