CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 2CVE-2004-0558 – CUPS 1.1.x - UDP Packet Remote Denial of Service
https://notcve.org/view.php?id=CVE-2004-0558
17 Sep 2004 — The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port. La implementación del Protocolo de Impresión de Internet (IPP) en CUPS anteriores a 1.1.21 permite a atacantes remotos causar una denegación de servicio (cuelgue del servicio) mediante cierto paquete UDP al puerto IPP. • https://www.exploit-db.com/exploits/24599 •
CVSS: 7.5EPSS: 2%CPEs: 17EXPL: 0CVE-2003-0788
https://notcve.org/view.php?id=CVE-2003-0788
06 Nov 2003 — Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631). Vulnerabilidad desconocida en la implementación del Internet Printing Protocol (IPP) en CUPS anteriores a 1.1.19 permite a atacantes remotos causar una denegación de servicio (consumición de CPU por un "bucle ocupado") mediante ciertas entradas al puerto IPP (TCP 631). • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=97958 •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 1CVE-2002-1384
https://notcve.org/view.php?id=CVE-2002-1384
02 Jan 2003 — Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. Desbordamiento de enteros en pdftops, usado en Xpdf 2.01 y anteriores, y CUPS antes de 1.1.18, permite a usuarios locales ejecutar código arbitrario mediante una entrada ColorSpace con un número de elementos largo, como ha sido demostrado por cups-pdf. • http://marc.info/?l=bugtraq&m=104152282309980&w=2 •
CVSS: 10.0EPSS: 2%CPEs: 5EXPL: 1CVE-2002-1372
https://notcve.org/view.php?id=CVE-2002-1372
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta. Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente los valores de retorno de varias operaciones de ficheros y sockets, lo que podría permitir a un atacante remoto causar una... • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html • CWE-252: Unchecked Return Value •
CVSS: 10.0EPSS: 2%CPEs: 15EXPL: 1CVE-2002-1367
https://notcve.org/view.php?id=CVE-2002-1367
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a "need authorization" page, as demonstrated by new-coke. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 9.8EPSS: 13%CPEs: 15EXPL: 1CVE-2002-1371
https://notcve.org/view.php?id=CVE-2002-1371
26 Dec 2002 — filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif. filters/image-gif.c en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente imágenes GIF de tamaño cero, lo que permite a atacantes remotos ejecutar código arbitrario mediante cabeceras de trozos modificadas, como ha sido demostrado por nogif • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 10.0EPSS: 14%CPEs: 15EXPL: 1CVE-2002-1369
https://notcve.org/view.php?id=CVE-2002-1369
26 Dec 2002 — jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack. jobs.c en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no utiliza adecuadamente la llamada a la función strncat cuando procesa la opción string, lo que permite a atacantes remotos la ejecución arbitraria de código mediante un ataque de desbordamiento de búfer. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 7.1EPSS: 0%CPEs: 11EXPL: 0CVE-2002-1366
https://notcve.org/view.php?id=CVE-2002-1366
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream. • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html •
CVSS: 9.8EPSS: 25%CPEs: 15EXPL: 2CVE-2002-1368 – CUPS 1.1.x - Negative Length HTTP Header
https://notcve.org/view.php?id=CVE-2002-1368
20 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding. • https://www.exploit-db.com/exploits/22106 •
CVSS: 10.0EPSS: 18%CPEs: 15EXPL: 1CVE-2002-1383
https://notcve.org/view.php?id=CVE-2002-1383
20 Dec 2002 — Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun. Múltiples desbordamientos de enteros en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 permiten a atacantes remotos ejecutar código arbitrario mediante el interfaz HTTP CUPSd, como ha sido demostrado por vanilla-coke, y el código ... • ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt •