61 matches found
CVE-2026-4480
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...
CVE-2026-4480 Samba: samba: remote code execution in printing subsystem via unescaped job description
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...
CVE-2026-4480
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...
CVE-2026-4480 Samba: samba: remote code execution in printing subsystem via unescaped job description
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...
USN-8306-1: Samba vulnerabilities
Asim Viladi Oglu Manizada discovered that Samba incorrectly handled access checks on reparse point operations. An attacker could possibly use this issue to modify reparse point extended attributes on files that should have been read-only. This issue only affected Ubuntu 25.10 and Ubuntu 26.04 LTS...
UBUNTU-CVE-2026-4480
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...
PT-2026-43437
Name of the Vulnerable Software and Affected Versions Samba affected versions not specified Description A flaw exists in the vfs worm module, which is designed to provide write-once, read-many WORM protections by preventing file modifications after a specific grace period. Due to insufficient...
PT-2026-43439
Name of the Vulnerable Software and Affected Versions ctdb versions prior to 4.23.8+git.477.f78166bceed-1.1 Description A denial of service issue exists against the AD DC WINS server. Recommendations Update to version 4.23.8+git.477.f78166bceed-1.1...
Linux Distros Unpatched Vulnerability : CVE-2026-4480
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the print command...
PT-2026-43436
Name of the Vulnerable Software and Affected Versions Samba affected versions not specified Description A flaw exists in the handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users who possess underlying filesyst...
KLA20237 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security...
The vulnerability of the Ubuntu operating system allows a perpetrator to execute arbitrary code or cause service interruptions.
The vulnerability of the WriteProlog function in the printing subsystem of the Ubuntu operating system is caused by an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure by using a specially...
The vulnerability of the Debian GNU/Linux operating system allows a perpetrator to execute arbitrary code or cause service interruptions.
The vulnerability of the WriteProlog function in the printing subsystem of the Debian GNU/Linux operating system is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure by using a specially crafted...
The vulnerability of the Debian GNU/Linux operating system allows a perpetrator to execute arbitrary code or cause service interruptions.
The vulnerability of the texttopdf function in the printing subsystem of the Debian GNU/Linux operating system is related to buffer overflows in dynamic memory, caused by integer overflows. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...
The vulnerability of the Ubuntu operating system allows a perpetrator to execute arbitrary code or cause service interruptions.
The vulnerability of the texttopdf function in the printing subsystem of the Ubuntu operating system is related to buffer overflows in dynamic memory, caused by integer overflows. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure with the...
SGI IRIX <= 6.4 netprint Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/395/info A vulnerability exists in the netprint program, shipping with Irix 6.x and 5.x by Silicon Graphics. The netprint program calls the disable command via a system call, without specifying an explicit path. Therefore...
AIX 4.2/4.3 piomkapqd Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3238/info The 'piomkapqd' utility is a component of the AIX printing subsystem. By default, it is installed setgid and owned by the 'printk' group. 'piomkapqd' contains a locally exploitable stack overrun condition in it'...
DEBIAN-CVE-2008-1033
The scheduler in CUPS in Apple Mac OS X 10.5 before 10.5.3, when debug logging is enabled and a printer requires a password, allows attackers to obtain sensitive information credentials by reading the log data, related to "authentication environment variables."...
AIX 4.24.3 - usrliblpdpioetcpiomkapqd Local Buffer Overflow
AIX 4.24.3 - usrliblpdpioetcpiomkapqd Local Buffer Overflow // source: https://www.securityfocus.com/bid/3238/info // // The 'piomkapqd' utility is a component of the AIX printing subsystem. By default, it is installed setgid and owned by the 'printk' group. // // 'piomkapqd' contains a locally...
AIX 4.2/4.3 - '/usr/lib/lpd/pio/etc/piomkapqd' Local Buffer Overflow
// source: https://www.securityfocus.com/bid/3238/info // // The 'piomkapqd' utility is a component of the AIX printing subsystem. By default, it is installed setgid and owned by the 'printk' group. // // 'piomkapqd' contains a locally exploitable stack overrun condition in it's handling of comma...