CUPS Empty UDP Datagram DoS

2004-09-16T07:45:47
ID OSVDB:9995
Type osvdb
Reporter Alvaro Martinez Echevarria()
Modified 2004-09-16T07:45:47

Description

Vulnerability Description

CUPS contains a flaw that may allow a remote denial of service. The issue is triggered when an empty UDP packet is sent to port 631 and will result in loss of availability for the cupsd.

Solution Description

Upgrade to version 1.1.21rc2 or higher, as it has been reported to fix this vulnerability. Additionally, a patch has been provided to mitigate this issue.

Short Description

CUPS contains a flaw that may allow a remote denial of service. The issue is triggered when an empty UDP packet is sent to port 631 and will result in loss of availability for the cupsd.

Manual Testing Notes

nmap -sU -p 631 victim.com

The CUPS error log should read:

Browse recv failed - No such file or directory. Browsing turned off.

References:

Vendor URL: http://www.cups.org Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1011283 Secunia Advisory ID:12566 Secunia Advisory ID:12603 Secunia Advisory ID:12626 Secunia Advisory ID:12690 Secunia Advisory ID:12812 Secunia Advisory ID:17645 Secunia Advisory ID:12558 Secunia Advisory ID:12559 Secunia Advisory ID:12571 Secunia Advisory ID:12681 Secunia Advisory ID:12556 Secunia Advisory ID:12830 Other Solution URL: http://www.informatik.uni-bremen.de/~jmm/sec/cups-dos-security.patch Other Advisory URL: http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:097 Other Advisory URL: http://www.suse.com/de/security/2004_31_cups.html Other Advisory URL: http://security.gentoo.org/glsa/glsa-200409-25.xml Other Advisory URL: http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000872 Other Advisory URL: http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.362106 Other Advisory URL: http://www.debian.org/security/2004/dsa-545 Other Advisory URL: http://www.suse.de/de/security/2004_31_cups.html Other Advisory URL: ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.15/SCOSA-2004.15.txt Other Advisory URL: http://www.cups.org/str.php?L863 Nessus Plugin ID:14737 Nessus Plugin ID:14780 Nessus Plugin ID:14839 Nessus Plugin ID:14753 Keyword: SCOSA-2005.49 Keyword: UDP Port 631,DSA-545-1,MDKSA-2004:097,SUSE-SA:2004:031 ISS X-Force ID: 17389 CVE-2004-0558