CVE-2004-0889
https://notcve.org/view.php?id=CVE-2004-0889
Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888. • http://marc.info/?l=bugtraq&m=109880927526773&w=2 http://www.gentoo.org/security/en/glsa/glsa-200410-20.xml http://www.gentoo.org/security/en/glsa/glsa-200410-30.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:113 http://www.securityfocus.com/bid/11501 https://exchange.xforce.ibmcloud.com/vulnerabilities/17819 •
CVE-2004-0923
https://notcve.org/view.php?id=CVE-2004-0923
CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords. • http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html http://www.ciac.org/ciac/bulletins/p-002.shtml http://www.debian.org/security/2004/dsa-566 http://www.kb.cert.org/vuls/id/557062 http://www.mandriva.com/security/advisories?name=MDKSA-2004:116 http://www.redhat.com/support/errata/RHSA-2004-543.html http://www.securityfocus.com/bid/11324 https://exchange.xforce.ibmcloud.com/vulnerabilities/17593 https://oval.cisecurity.org/repository/search/definition/ov •
CVE-2004-0558 – CUPS 1.1.x - UDP Packet Remote Denial of Service
https://notcve.org/view.php?id=CVE-2004-0558
The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port. La implementación del Protocolo de Impresión de Internet (IPP) en CUPS anteriores a 1.1.21 permite a atacantes remotos causar una denegación de servicio (cuelgue del servicio) mediante cierto paquete UDP al puerto IPP. • https://www.exploit-db.com/exploits/24599 https://github.com/fibonascii/CVE-2004-0558 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000872 http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html http://marc.info/?l=bugtraq&m=109760654431316&w=2 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57646-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1 http://sunsolve.sun.com/search/document.do? •
CVE-2003-0788
https://notcve.org/view.php?id=CVE-2003-0788
Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631). Vulnerabilidad desconocida en la implementación del Internet Printing Protocol (IPP) en CUPS anteriores a 1.1.19 permite a atacantes remotos causar una denegación de servicio (consumición de CPU por un "bucle ocupado") mediante ciertas entradas al puerto IPP (TCP 631). • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=97958 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000779 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000788 http://secunia.com/advisories/10123 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:104 http://www.redhat.com/support/errata/RHSA-2003-275.html http://www.securityfocus.com/bid/8952 http://www.turbolinux.com/security/TLSA-2003-63.txt https://exchange.xforce. •
CVE-2002-1384
https://notcve.org/view.php?id=CVE-2002-1384
Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. Desbordamiento de enteros en pdftops, usado en Xpdf 2.01 y anteriores, y CUPS antes de 1.1.18, permite a usuarios locales ejecutar código arbitrario mediante una entrada ColorSpace con un número de elementos largo, como ha sido demostrado por cups-pdf. • http://marc.info/?l=bugtraq&m=104152282309980&w=2 http://www.debian.org/security/2003/dsa-222 http://www.debian.org/security/2003/dsa-226 http://www.debian.org/security/2003/dsa-232 http://www.idefense.com/advisory/12.23.02.txt http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:001 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:002 http://www.novell.com/linux/security/advisories/2003_002_cups.html http://www.redhat.com/support/errata/ •