Lucene search
SuseSUSE-SA:2003:028HistoryJun 06, 2003 - 2:53 p.m.
remote Denial of Service in cups
2003-06-0614:53:42
lists.opensuse.org
9
0.072 Low
EPSS
Percentile
93.3%
The well known Common Unix Printing System (CUPS) was found vulnerable to a remote Denial of Service attack. The CUPS daemon will stop serving clients if the second carriage return in a request is not sent to complete the header. Since the vulnerability occurs before any authorization or address verification there is no other workaround than shutting down the CUPS server.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 8.2 | i586 | cups-libs | < 1.1.18-77 | cups-libs-1.1.18-77.i586.rpm |
| openSUSE | 8.0 | i386 | cups | < 1.1.12-95 | cups-1.1.12-95.i386.rpm |
| openSUSE | 7.3 | i386 | cups-libs | < 1.1.10-99 | cups-libs-1.1.10-99.i386.rpm |
| openSUSE | 8.0 | i386 | cups-libs | < 1.1.12-95 | cups-libs-1.1.12-95.i386.rpm |
| openSUSE | 7.3 | sparc | cups-devel | < 1.1.10-50 | cups-devel-1.1.10-50.sparc.rpm |
| openSUSE | 7.2 | i386 | cups | < 1.1.6-128 | cups-1.1.6-128.i386.rpm |
| openSUSE | 8.2 | i586 | cups-devel | < 1.1.18-77 | cups-devel-1.1.18-77.i586.rpm |
| openSUSE | 8.2 | i586 | cups-client | < 1.1.18-77 | cups-client-1.1.18-77.i586.rpm |
| openSUSE | 8.1 | i586 | cups | < 1.1.15-98 | cups-1.1.15-98.i586.rpm |
| openSUSE | 7.3 | i386 | cups-devel | < 1.1.10-99 | cups-devel-1.1.10-99.i386.rpm |
Related
openvas
openvas
Debian Security Advisory DSA 317-1 (cupsys)
2008-01-17 00:00:00
Debian Security Advisory DSA 317-1 (cupsys)
2008-01-17 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : cups (MDKSA-2003:062)
2004-07-31 00:00:00
Debian DSA-317-1 : cupsys - denial of service
2004-09-29 00:00:00
securityvulns
securityvulns
SuSE Security Announcement: cups (SuSE-SA:2003:028)
2003-06-09 00:00:00
debian
debian
[SECURITY] [DSA-317-1] New cupsys packages fix denial of service
2003-06-12 03:19:25
osv
osv
cupsys - denial of service
2003-06-11 00:00:00
cve
cve
CVE-2003-0195
2003-06-16 04:00:00
debiancve
debiancve
CVE-2003-0195
2003-06-16 04:00:00