12 matches found
PT-2025-6686 · Fuji Xerox · Docuprint Cp228W +3
Name of the Vulnerable Software and Affected Versions: DocuPrint CP225w versions 01.22.01 and earlier DocuPrint CP228w versions 01.22.01 and earlier DocuPrint CM225fw versions 01.10.01 and earlier DocuPrint CM228fw versions 01.10.01 and earlier Description: An out-of-bounds write issue exists in...
Improper Input Validation
CUPS is vulnerable to Improper Input Validation. The vulnerability is due to improper filtering of ANSI escape sequences from shared printer names. This issue can be exploited by an attacker to execute arbitrary code via a crafted printer name...
CVE-2022-43752
Oracle Solaris version 10 1/13, when using the Common Desktop Environment CDE, is vulnerable to a privilege escalation vulnerability. A low privileged user can escalate to root by crafting a malicious printer and double clicking on the the crafted printer's icon...
CVE-2022-43752
Oracle Solaris version 10 1/13, when using the Common Desktop Environment CDE, is vulnerable to a privilege escalation vulnerability. A low privileged user can escalate to root by crafting a malicious printer and double clicking on the the crafted printer's icon...
PT-2022-6223 · Oracle · Common Desktop Environment +1
Name of the Vulnerable Software and Affected Versions: Oracle Solaris version 10 1/13 Description: The issue is a privilege escalation vulnerability that can be exploited by a low-privileged user to gain root access. This is achieved by crafting a malicious printer and double-clicking on the...
UBUNTU-CVE-2017-15400
Insufficient restriction of IPP filters in CUPS in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker to execute a command with the same privileges as the cups daemon via a crafted PPD file, aka a printer zeroconfig CRLF issue...
CVE-2014-8166
The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name...
CVE-2014-8166
The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name...
CVE-2014-8166
The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name...
CVE-2014-8166
The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name...
CVE-2014-8166
The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name...
CVE-2011-1703
CVE-2011-1703 involves a heap-based buffer overflow in the Nipplib.dll component of the Novell iPrint Client prior to version 5.64. The vulnerability occurs when processing the printer-url’s driver-version parameter, which is copied into a fixed-length heap buffer, enabling a remote attacker to e...