CVSS: 7.1EPSS: 0%CPEs: 11EXPL: 0CVE-2002-1366
https://notcve.org/view.php?id=CVE-2002-1366
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 10.0EPSS: 2%CPEs: 5EXPL: 1CVE-2002-1372
https://notcve.org/view.php?id=CVE-2002-1372
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta. Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente los valores de retorno de varias operaciones de ficheros y sockets, lo que podría permitir a un atacante remoto causar una... • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html • CWE-252: Unchecked Return Value •
CVSS: 10.0EPSS: 2%CPEs: 15EXPL: 1CVE-2002-1367
https://notcve.org/view.php?id=CVE-2002-1367
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a "need authorization" page, as demonstrated by new-coke. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 9.8EPSS: 13%CPEs: 15EXPL: 1CVE-2002-1371
https://notcve.org/view.php?id=CVE-2002-1371
26 Dec 2002 — filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif. filters/image-gif.c en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente imágenes GIF de tamaño cero, lo que permite a atacantes remotos ejecutar código arbitrario mediante cabeceras de trozos modificadas, como ha sido demostrado por nogif • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 9.8EPSS: 25%CPEs: 15EXPL: 2CVE-2002-1368 – CUPS 1.1.x - Negative Length HTTP Header
https://notcve.org/view.php?id=CVE-2002-1368
20 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding. • https://www.exploit-db.com/exploits/22106 •
CVSS: 10.0EPSS: 18%CPEs: 15EXPL: 1CVE-2002-1383
https://notcve.org/view.php?id=CVE-2002-1383
20 Dec 2002 — Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun. Múltiples desbordamientos de enteros en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 permiten a atacantes remotos ejecutar código arbitrario mediante el interfaz HTTP CUPSd, como ha sido demostrado por vanilla-coke, y el código ... • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt •
CVSS: 9.8EPSS: 13%CPEs: 3EXPL: 0CVE-2002-1347
https://notcve.org/view.php?id=CVE-2002-1347
11 Dec 2002 — Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long inputs during user name canonicalization, (2) characters that need to be escaped during LDAP authentication using saslauthd, or (3) an off-by-one error in the log writer, which does not allocate space for the null character that terminates a string. Desbordamiento de búfer en la librería Cyrus SASL 2.1.9 y anteriores permite a atacantes remoto... • http://archives.neohapsis.com/archives/linux/suse/2002-q4/1275.html • CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1266
https://notcve.org/view.php?id=CVE-2002-1266
11 Dec 2002 — Mac OS X 10.2.2 allows local users to gain privileges by mounting a disk image file that was created on another system, aka "Local User Privilege Elevation via Disk Image File." • http://www.info.apple.com/usen/security/security_updates.html •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1270
https://notcve.org/view.php?id=CVE-2002-1270
11 Dec 2002 — Mac OS X 10.2.2 allows local users to read files that only allow write access via the map_fd() Mach system call. Mac OS X 10.2.2 permite a usuarios locales la lectura de ficheros que sólo conceden acceso de escritura mediante la llamda al sistema map_fd() Mach. • http://www.info.apple.com/usen/security/security_updates.html •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1268
https://notcve.org/view.php?id=CVE-2002-1268
11 Dec 2002 — Mac OS X 10.2.2 allows local users to gain privileges via a mounted ISO 9600 CD, aka "User Privilege Elevation via Mounting an ISO 9600 CD." Mac OS X 10.2.2 permite a usuarios locales ganar privilegios mediante un CD ISO 9600 montado. Tambíén conocida como "Elevación de privilegios de usuario montando un CD ISO 9600. • http://www.info.apple.com/usen/security/security_updates.html •