Lucene search

K
ubuntucveUbuntu.comUB:CVE-2010-0540
HistoryJun 17, 2010 - 12:00 a.m.

CVE-2010-0540

2010-06-1700:00:00
ubuntu.com
ubuntu.com
6

6 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.7%

Cross-site request forgery (CSRF) vulnerability in the web interface in
CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before
10.6.4, and other platforms, allows remote attackers to hijack the
authentication of administrators for requests that change settings.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchcupsys< 1.2.2-0ubuntu0.6.06.19UNKNOWN
ubuntu8.04noarchcupsys< 1.3.7-1ubuntu3.11UNKNOWN
ubuntu9.04noarchcups< 1.3.9-17ubuntu3.9UNKNOWN
ubuntu9.10noarchcups< 1.4.1-5ubuntu2.6UNKNOWN
ubuntu10.04noarchcups< 1.4.3-1ubuntu1.2UNKNOWN

6 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.7%

Related for UB:CVE-2010-0540