7 matches found
SUSE CVE-2013-6476
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file...
CVE-2013-6476
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file...
Design/Logic Flaw
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file...
CVE-2013-6476
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file...
CVE-2013-6476
CVE-2013-6476 affects cups-filters (pdftoopvp filter) and its OPVPWrapper.cxx path handling. The root cause is that the pdftoopvp filter did not restrict driver directories, allowing a local attacker to place a Trojan horse driver in the same directory as the PDF to gain privileges. The vulnerabi...
CVE-2013-6476
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file...
cups-filters 'OPVPWrapper::loadDriver()'函数本地任意命令执行漏洞
Bugtraq ID:66158 CVE ID:CVE-2013-6476 CUPS是一款通用Unix打印系统,是Unix环境下的跨平台打印解决方案,基于Internet打印协议,提供大多数PostScript和raster打印机服务。 cups-filters 'OPVPWrapper::loadDriver'函数不正确过滤用户提交的输入,允许本地攻击者利用漏洞以'lp'上下文执行任意命令。 0 cups-filters 用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞:...