7 matches found
SUSE CVE-2004-1270
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers...
CUPS pdftops过滤器多个整数溢出漏洞
BUGTRAQ ID: 35195 CVECAN ID: CVE-2009-0791 Common Unix Printing System(CUPS)是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 CUPS的pdftops过滤器中存在多个可能导致堆溢出的整数溢出漏洞。攻击者可以创建恶意的PDF文件,如果打印了该文件就会导致pdftops崩溃或以运行lp用户的权限执行任意指令。 Easy Software Products CUPS 1.1.22 厂商补丁: Easy Softwar...
Fedora Core 3 : cups-1.1.22-0.rc1.8.6 (2005-733)
These updated packages fix a problem handling PDF files that could have security implications CVE-2005-2097. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...
CVE-2004-1268
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors...
CVE-2004-1269
CVE-2004-1269 affects CUPS 1.1.22 where the lppasswd path does not remove passwd.new when a file-size resource limit is hit during writing passwd.new, causing subsequent lppasswd invocations to fail. The vulnerability is documented across multiple advisories and issue trackers related to CUPS and...
CVE-2004-1267
Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file...
CVE-2004-1269
lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail...