Remote Code Execution (RCE)

🗓️ 10 Apr 2020 01:07:09Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 69 Views

Remote Code Execution in CUPS due to LZW decompressor in gif_read_lzw function

Reporter	Title	Published	Views	Family All 170
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Enterprise Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the CentOS operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the CentOS operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the CentOS operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the CentOS operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec

Vulners

Node

cups cupsMatch1.4.2_39.el6

cups cupsMatch1.4.2_39.el6_1.1

cups cupsMatch1.4.2_35.el6_0.1

cups cupsMatch1.4.2_35.el6

cups cupsMatch1.3.7_26.el5

cups cupsMatch1.3.7_11.el5_4.5

cups cupsMatch1.3.7_11.el5_4.4

cups cupsMatch1.3.7_8.el5_3.6

cups cupsMatch1.3.7_11.el5_4.3

cups cupsMatch1.3.7_18.el5

cups cupsMatch1.2.4_11.5.1.el5

cups cupsMatch1.3.7_8.el5_3.4

cups cupsMatch1.3.7_11.el5_4.6

cups cupsMatch1.3.7_26.el5_6.1

cups cupsMatch1.3.7_18.el5_5.4

cups cupsMatch1.2.4_11.8.el5

cups cupsMatch1.3.7_18.el5_5.8

cups cupsMatch1.3.7_11.el5

cups cupsMatch1.3.7_18.el5_5.7

cups cupsMatch1.2.4_11.18.el5_2.1

cups cupsMatch1.2.4_11.18.el5_2.2

cups cupsMatch1.2.4_11.18.el5_2.3

cups cupsMatch1.2.4_11.5.3.el5

cups cupsMatch1.2.4_11.14.el5_1.6

cups cupsMatch1.3.7_8.el5

cups cupsMatch1.2.4_11.5.el5

cups cupsMatch1.2.4_11.14.el5_1.1

cups cupsMatch1.2.4_11.14.el5_1.4

cups cupsMatch1.2.4_11.14.el5_1.3

cups cupsMatch1.2.4_11.18.el5

cups cupsMatch1.2.4_11.14.el5

Source	Link
securitytracker	www.securitytracker.com/id
secunia	www.secunia.com/advisories/45621
secunia	www.secunia.com/advisories/45900
secunia	www.secunia.com/advisories/45945
secunia	www.secunia.com/advisories/45948
secunia	www.secunia.com/advisories/46024
secunia	www.secunia.com/advisories/48236
secunia	www.secunia.com/advisories/48308
securityfocus	www.securityfocus.com/bid/49148
secunia	www.secunia.com/advisories/50737

18 Apr 2020 00:17Current

3.3Low risk

Vulners AI Score3.3

CVSS 25.1

EPSS0.12709