3863 matches found
Common Desktop Environment 注入漏洞
Common Desktop Environment is a Unix and OpenVMS desktop environment for individual developers based on the Motif widget toolkit. A security vulnerability exists in Common Desktop Environment version 1.6. An attacker can exploit this vulnerability to inject arbitrary printer names via the...
CVE-2023-24040
The CVE-2023-24040 issue affects Common Desktop Environment (CDE) 1.6, where a bug in dtprintinfo’s handling of the lpstat parser during the listing of available printers allows low-privileged local users to inject arbitrary printer names via the $HOME/.printers file. This input manipulation can ...
CVE-2023-24040
dtprintinfo in Common Desktop Environment 1.6 has a bug in the parser of lpstat an invoked external command during listing of the names of available printers. This allows low-privileged local users to inject arbitrary printer names via the $HOME/.printers file. This injection allows those users t...
Solaris 10 dtprintinfo / libXm / libXpm Security Issues
-- HNS-2022-01 - HN Security Advisory - https://security.humanativaspa.it/ Title: Multiple vulnerabilities in Solaris dtprintinfo and libXm/libXpm Products: Common Desktop Environment 1.6, Motif 2.1, X.Org libXpm Date: 2023-01-18 Oracle vulnerability tracking numbers: S1597707 - Arbitrary printer...
Security Advisory - Misinterpretation of Input in a Huawei Printer Product
A Huawei printer product is vulnerable to misinterpretation of input. Successful exploitation could lead to DoS. Vulnerability ID:HWPSIRT-2022-44321 This vulnerability has been assigned a CVE ID: CVE-2022-48230...
Security Advisory - Buffer Overflow Vulnerability in a Huawei Printer Product
A Huawei printer product has a buffer overflow vulnerability. Successful exploitation could lead to device service exceptions. Vulnerability ID:HWPSIRT-2022-17649 This vulnerability has been assigned a CVE ID: CVE-2022-48260...
Security Advisory - System Command Injection Vulnerability in a Huawei Printer Product
A Huawei printer has a system command injection vulnerability. Successful exploitation could allow attackers to gain higher privileges. Vulnerability ID:HWPSIRT-2022-87340 This vulnerability has been assigned a CVE ID: CVE-2022-48259...
Security Advisory - Misinterpretation of Input Vulnerability in Huawei Printer
There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of this vulnerability may cause the printer service to be abnormal.Vulnerability ID:HWPSIRT-2022-78037 This vulnerability has been assigned a CVE ID: CVE-2022-48261...
Security Advisory - System Command Injection Vulnerability in a Huawei Printer Product
A Huawei printer has a system command injection vulnerability. Successful exploitation could lead to remote code execution.Vulnerability ID:HWPSIRT-2022-90114 This vulnerability has been assigned a CVEID:CVE-2022-48255...
Microsoft Patch Tuesday, January 2023 Edition
Microsoft today released updates to fix nearly 100 security flaws in its Windows operating systems and other software. Highlights from the first Patch Tuesday of 2023 include a zero-day vulnerability in Windows, printer software flaws reported by the U.S. National Security Agency, and a critical...
Exploit for Server-Side Request Forgery in Lexmark B2236_Firmware
Lexmark printer stuff This repository contains all the work r...
SHARP Printer Command Injection Vulnerability (Dec 2022)
Multiple SHARP printers are prone to a command injection vulnerability. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Arbitrary Command Injection
Overview printer is a module for sending commands to a small thermal printer Affected versions of this package are vulnerable to Arbitrary Command Injection in the saveurltopath function in lib/printer/jobs/preparepage.rb. Remediation A fix was pushed into the master branch but not yet published...
CVE-2017-20156
A vulnerability was found in Exciting Printer and classified as critical. This issue affects some unknown processing of the file lib/printer/jobs/preparepage.rb of the component Argument Handler. The manipulation of the argument URL leads to command injection. The patch is named...
CVE-2017-20156
A vulnerability was found in Exciting Printer and classified as critical. This issue affects some unknown processing of the file lib/printer/jobs/preparepage.rb of the component Argument Handler. The manipulation of the argument URL leads to command injection. The patch is named...
Command injection
A vulnerability was found in Exciting Printer and classified as critical. This issue affects some unknown processing of the file lib/printer/jobs/preparepage.rb of the component Argument Handler. The manipulation of the argument URL leads to command injection. The patch is named...
CVE-2017-20156 Exciting Printer Argument prepare_page.rb command injection
A vulnerability was found in Exciting Printer and classified as critical. This issue affects some unknown processing of the file lib/printer/jobs/preparepage.rb of the component Argument Handler. The manipulation of the argument URL leads to command injection. The patch is named...
CVE-2017-20156
CVE-2017-20156 affects the Exciting Printer project, specifically the Argument Handler component. The vulnerability targets the file lib/printer/jobs/prepare_page.rb where manipulation of the URL argument enables command injection. Impact is described as critical with an attacker able to execute ...
PT-2022-8021 · Unknown · Exciting Printer
Name of the Vulnerable Software and Affected Versions: Exciting Printer affected versions not specified Description: A critical issue affects the Argument Handler component, specifically the file lib/printer/jobs/prepare page.rb, where the manipulation of the URL argument leads to command...
SHARP Printer Detection (FTP)
FTP based detection of SHARP printer devices. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...