CVSS: 7.5EPSS: 20%CPEs: 15EXPL: 2CVE-2002-1368 – CUPS 1.1.x - Negative Length HTTP Header
https://notcve.org/view.php?id=CVE-2002-1368
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding. • https://www.exploit-db.com/exploits/22106 ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000702 http://marc.info/?l=bugtraq&m=104032149026670&w=2 http://secunia.com/advisories/7756 http://secunia.com/advisories/7794 http://secunia.com/advisories/7803 http://secunia.com/advisories/7843 http://secunia.com/advisories/7858 http:/&# •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2002-0063
https://notcve.org/view.php?id=CVE-2002-0063
Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values. El desbordamiento del búfer en la función ippRead de CUPS anteriores a la 1.1.14 podrían permitir a atacantes ejecutar código arbitrario mediante valores largos en los atributos 'names' o 'language'. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-008.0.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000471 http://lists2.suse.com/archive/suse-security-announce/2001-Mar/0000.html http://www.cups.org/relnotes.html http://www.debian.org/security/2002/dsa-110 http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-015.php http://www.redhat.com/support/errata/RHSA-2002-032.html http://www.securityfocus.com/bid/4100 https://exchange.xforce.ib •
CVSS: 1.2EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1333
https://notcve.org/view.php?id=CVE-2001-1333
Linux CUPS before 1.1.6 does not securely handle temporary files, possibly due to a symlink vulnerability that could allow local users to overwrite files. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000384 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000386 http://lists2.suse.com/archive/suse-security-announce/2001-Mar/0000.html http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-048.php3 •
CVSS: 7.5EPSS: 6%CPEs: 1EXPL: 0CVE-2001-1332
https://notcve.org/view.php?id=CVE-2001-1332
Buffer overflows in Linux CUPS before 1.1.6 may allow remote attackers to execute arbitrary code. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000384 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000386 http://lists2.suse.com/archive/suse-security-announce/2001-Mar/0000.html http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-048.php3 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0194
https://notcve.org/view.php?id=CVE-2001-0194
Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line. • http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-020.php3 http://www.osvdb.org/6064 https://exchange.xforce.ibmcloud.com/vulnerabilities/6043 •