CVSS: 7.5EPSS: 2%CPEs: 17EXPL: 0CVE-2003-0788
https://notcve.org/view.php?id=CVE-2003-0788
06 Nov 2003 — Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631). Vulnerabilidad desconocida en la implementación del Internet Printing Protocol (IPP) en CUPS anteriores a 1.1.19 permite a atacantes remotos causar una denegación de servicio (consumición de CPU por un "bucle ocupado") mediante ciertas entradas al puerto IPP (TCP 631). • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=97958 •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 1CVE-2002-1384
https://notcve.org/view.php?id=CVE-2002-1384
02 Jan 2003 — Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. Desbordamiento de enteros en pdftops, usado en Xpdf 2.01 y anteriores, y CUPS antes de 1.1.18, permite a usuarios locales ejecutar código arbitrario mediante una entrada ColorSpace con un número de elementos largo, como ha sido demostrado por cups-pdf. • http://marc.info/?l=bugtraq&m=104152282309980&w=2 •
CVSS: 10.0EPSS: 2%CPEs: 5EXPL: 1CVE-2002-1372
https://notcve.org/view.php?id=CVE-2002-1372
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta. Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente los valores de retorno de varias operaciones de ficheros y sockets, lo que podría permitir a un atacante remoto causar una... • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html • CWE-252: Unchecked Return Value •
CVSS: 10.0EPSS: 2%CPEs: 15EXPL: 1CVE-2002-1367
https://notcve.org/view.php?id=CVE-2002-1367
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a "need authorization" page, as demonstrated by new-coke. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 9.8EPSS: 13%CPEs: 15EXPL: 1CVE-2002-1371
https://notcve.org/view.php?id=CVE-2002-1371
26 Dec 2002 — filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif. filters/image-gif.c en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente imágenes GIF de tamaño cero, lo que permite a atacantes remotos ejecutar código arbitrario mediante cabeceras de trozos modificadas, como ha sido demostrado por nogif • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 10.0EPSS: 14%CPEs: 15EXPL: 1CVE-2002-1369
https://notcve.org/view.php?id=CVE-2002-1369
26 Dec 2002 — jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack. jobs.c en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no utiliza adecuadamente la llamada a la función strncat cuando procesa la opción string, lo que permite a atacantes remotos la ejecución arbitraria de código mediante un ataque de desbordamiento de búfer. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 7.1EPSS: 0%CPEs: 11EXPL: 0CVE-2002-1366
https://notcve.org/view.php?id=CVE-2002-1366
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 9.8EPSS: 25%CPEs: 15EXPL: 2CVE-2002-1368 – CUPS 1.1.x - Negative Length HTTP Header
https://notcve.org/view.php?id=CVE-2002-1368
20 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding. • https://www.exploit-db.com/exploits/22106 •
CVSS: 10.0EPSS: 18%CPEs: 15EXPL: 1CVE-2002-1383
https://notcve.org/view.php?id=CVE-2002-1383
20 Dec 2002 — Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun. Múltiples desbordamientos de enteros en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 permiten a atacantes remotos ejecutar código arbitrario mediante el interfaz HTTP CUPSd, como ha sido demostrado por vanilla-coke, y el código ... • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2002-0063
https://notcve.org/view.php?id=CVE-2002-0063
08 Mar 2002 — Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values. El desbordamiento del búfer en la función ippRead de CUPS anteriores a la 1.1.14 podrían permitir a atacantes ejecutar código arbitrario mediante valores largos en los atributos 'names' o 'language'. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-008.0.txt •