9 matches found
Astra Linux - уязвимость в cups-filters
CUPS is a standards-based, open-source printing system. cups-browsed includes network printing functionality, which encompasses, but is not limited to, the ability to automatically discover print services and shared printers. cups-browsed binds to INADDRANY:631, allowing it to accept packets from...
PT-2025-51344
Name of the Vulnerable Software and Affected Versions Autodesk products affected versions not specified Description A specially designed PRT file, when processed by certain Autodesk products, can lead to a memory corruption issue. An attacker could potentially exploit this to run code without...
CUPS IPP Attributes LAN Remote Code Execution Exploit
This Metasploit module exploits vulnerabilities in OpenPrinting CUPS, which is running by default on most Linux distributions. The vulnerabilities allow an attacker on the LAN to advertise a malicious printer that triggers remote code execution when a victim sends a print job to the malicious...
CUPS IPP Attributes LAN Remote Code Execution
class MetasploitModule Msf::Exploit::Remote Rank = NormalRanking include Exploit::Remote::DNS::Common include Exploit::Remote::SocketServer include Msf::Exploit::Remote::HttpServer::HTML Accessor for IPP HTTP service attraccessor :service2 MULTICASTADDR = '224.0.0.251' Define IPP constants module...
cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes
A flaw was found in OpenPrinting CUPS. In certain conditions, a remote attacker can add a malicious printer or directly hijack an existing printer by replacing the valid IPP URL with a malicious one. Also, it is possible that due to a lack of validation of IPP attributes returned by the server,...
cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes
A flaw was found in OpenPrinting CUPS. In certain conditions, a remote attacker can add a malicious printer or directly hijack an existing printer by replacing the valid IPP URL with a malicious one. Also, it is possible that due to a lack of validation of IPP attributes returned by the server,...
CVE-2024-47076
A flaw was found in OpenPrinting CUPS. In certain conditions, a remote attacker can add a malicious printer or directly hijack an existing printer by replacing the valid IPP URL with a malicious one. Also, it is possible that due to a lack of validation of IPP attributes returned by the server,...
Oracle Solaris 安全漏洞
Oracle Solaris, a UNIX operating system from Oracle Corporation, has a security vulnerability in Oracle Solaris versions 10 1/13 that stems from a vulnerability to privilege escalation when using the Common Desktop Environment CDE. An attacker with low privileges can escalate to root by creating ...
CVE-2022-43752
Oracle Solaris version 10 1/13, when using the Common Desktop Environment CDE, is vulnerable to a privilege escalation vulnerability. A low privileged user can escalate to root by crafting a malicious printer and double clicking on the the crafted printer's icon...