7.2 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.015 Low
EPSS
Percentile
86.6%
Thomas Pollet discovered that CUPS did not properly validate the size of
PNG images. A local attacker, and a remote attacker if printer sharing
is enabled, could send a crafted file and cause a denial of service or
possibly execute arbitrary code as the non-root user in Ubuntu 6.06 LTS
and 7.04. In Ubuntu 7.10, attackers would be isolated by the AppArmor
CUPS profile. (CVE-2008-1722)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 7.10 | noarch | cupsys | <Β 1.3.2-1ubuntu7.7 | UNKNOWN |
Ubuntu | 7.10 | noarch | cupsys-bsd | <Β 1.3.2-1ubuntu7.7 | UNKNOWN |
Ubuntu | 7.10 | noarch | cupsys-client | <Β 1.3.2-1ubuntu7.7 | UNKNOWN |
Ubuntu | 7.10 | noarch | libcupsimage2 | <Β 1.3.2-1ubuntu7.7 | UNKNOWN |
Ubuntu | 7.10 | noarch | libcupsimage2-dev | <Β 1.3.2-1ubuntu7.7 | UNKNOWN |
Ubuntu | 7.10 | noarch | libcupsys2 | <Β 1.3.2-1ubuntu7.7 | UNKNOWN |
Ubuntu | 7.10 | noarch | libcupsys2-dev | <Β 1.3.2-1ubuntu7.7 | UNKNOWN |
Ubuntu | 7.04 | noarch | cupsys | <Β 1.2.8-0ubuntu8.4 | UNKNOWN |
Ubuntu | 7.04 | noarch | cupsys-bsd | <Β 1.2.8-0ubuntu8.4 | UNKNOWN |
Ubuntu | 7.04 | noarch | cupsys-client | <Β 1.2.8-0ubuntu8.4 | UNKNOWN |