Page 18 of 100 results (0.009 seconds)

CVSS: 2.1EPSS: 0%CPEs: 51EXPL: 0

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords. • http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html http://www.ciac.org/ciac/bulletins/p-002.shtml http://www.debian.org/security/2004/dsa-566 http://www.kb.cert.org/vuls/id/557062 http://www.mandriva.com/security/advisories?name=MDKSA-2004:116 http://www.redhat.com/support/errata/RHSA-2004-543.html http://www.securityfocus.com/bid/11324 https://exchange.xforce.ibmcloud.com/vulnerabilities/17593 https://oval.cisecurity.org/repository/search/definition/ov •

CVSS: 5.0EPSS: 3%CPEs: 1EXPL: 2

The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port. La implementación del Protocolo de Impresión de Internet (IPP) en CUPS anteriores a 1.1.21 permite a atacantes remotos causar una denegación de servicio (cuelgue del servicio) mediante cierto paquete UDP al puerto IPP. • https://www.exploit-db.com/exploits/24599 https://github.com/fibonascii/CVE-2004-0558 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000872 http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html http://marc.info/?l=bugtraq&m=109760654431316&w=2 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57646-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1 http://sunsolve.sun.com/search/document.do? •

CVSS: 5.0EPSS: 2%CPEs: 17EXPL: 0

Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631). Vulnerabilidad desconocida en la implementación del Internet Printing Protocol (IPP) en CUPS anteriores a 1.1.19 permite a atacantes remotos causar una denegación de servicio (consumición de CPU por un "bucle ocupado") mediante ciertas entradas al puerto IPP (TCP 631). • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=97958 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000779 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000788 http://secunia.com/advisories/10123 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:104 http://www.redhat.com/support/errata/RHSA-2003-275.html http://www.securityfocus.com/bid/8952 http://www.turbolinux.com/security/TLSA-2003-63.txt https://exchange.xforce. •

CVSS: 7.2EPSS: 0%CPEs: 20EXPL: 1

Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. Desbordamiento de enteros en pdftops, usado en Xpdf 2.01 y anteriores, y CUPS antes de 1.1.18, permite a usuarios locales ejecutar código arbitrario mediante una entrada ColorSpace con un número de elementos largo, como ha sido demostrado por cups-pdf. • http://marc.info/?l=bugtraq&m=104152282309980&w=2 http://www.debian.org/security/2003/dsa-222 http://www.debian.org/security/2003/dsa-226 http://www.debian.org/security/2003/dsa-232 http://www.idefense.com/advisory/12.23.02.txt http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002 http://www.novell.com/linux/security/advisories/2003_002_cups.html http://www.redhat.com/support/errata/ •

CVSS: 7.5EPSS: 1%CPEs: 5EXPL: 1

Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta. Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente los valores de retorno de varias operaciones de ficheros y sockets, lo que podría permitir a un atacante remoto causar una denegación de servicio (consumición de recursos) haciendo que descriptores de ficheros sean asignados y no liberados, como ha sido demostrado por fanta. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000702 http://marc.info/?l=bugtraq&m=104032149026670&w=2 http://www.debian.org/security/2003/dsa-232 http://www.idefense.com/advisory/12.19.02.txt http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001 http://www.novell.com/linux/security/advisories/2003_002_cups.html http://www.redhat.com/support/errata/RHSA-2002-295.html http:// • CWE-252: Unchecked Return Value •