CVSS: 10.0EPSS: 23%CPEs: 1EXPL: 0CVE-2008-0882 – cups: double free vulnerability in process_browse_data()
https://notcve.org/view.php?id=CVE-2008-0882
21 Feb 2008 — Double free vulnerability in the process_browse_data function in CUPS 1.3.5 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via crafted UDP Browse packets to the cupsd port (631/udp), related to an unspecified manipulation of a remote printer. NOTE: some of these details are obtained from third party information. Una vulnerabilidad de doble liberación en la función process_browse_data en CUPS versión 1.3.5, permite a los atacantes remotos causar una de... • http://docs.info.apple.com/article.html?artnum=307562 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 26%CPEs: 1EXPL: 0CVE-2007-4351 – cups boundary error
https://notcve.org/view.php?id=CVE-2007-4351
31 Oct 2007 — Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted (1) textWithLanguage or (2) nameWithLanguage Internet Printing Protocol (IPP) tag, leading to a stack-based buffer overflow. Error de superación de límite (off-by-one) en la función ippReadIO de cup/ipp.c de CUPS 1.3.3 permite a atacantes remotos provocar una denegación de servicio (caída) mediante una etiqueta (1) textWithLanguage o (2) nameWithLanguage Internet ... • http://docs.info.apple.com/article.html?artnum=307179 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 21%CPEs: 2EXPL: 0CVE-2007-0720 – Gentoo Linux Security Advisory 201412-11
https://notcve.org/view.php?id=CVE-2007-0720
13 Mar 2007 — The CUPS service on multiple platforms allows remote attackers to cause a denial of service (service hang) via a "partially-negotiated" SSL connection, which prevents other requests from being accepted. El servicio CUPS en múltiples plataformas permite que los atacantes remotos causen una denegación de servicio (suspensión de servicio) por medio de una conexión SSL "partially-negotiated", lo que impide que otras peticiones sean aceptadas. Multiple vulnerabilities have been found in AMD64 x86 emulation base ... • http://docs.info.apple.com/article.html?artnum=305214 •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2005-4873
https://notcve.org/view.php?id=CVE-2005-4873
31 Dec 2005 — Multiple stack-based buffer overflows in the phpcups PHP module for CUPS 1.1.23rc1 might allow context-dependent attackers to execute arbitrary code via vectors that result in long function parameters, as demonstrated by the cups_get_dest_options function in phpcups.c. • http://www.cups.org/str.php?L1102 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •