// For flags

CVE-2007-5849

Common UNIX Printing System 1.2/1.3 SNMP - 'asn1_get_string()' Remote Buffer Overflow

Severity Score

9.3
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow.

Un subdesbordamiento de enteros en la función asn1_get_string en el back end de SNMP (backend/snmp.c) para CUPS versiones 1.2 hasta 1.3.4, permite a los atacantes remotos ejecutar código arbitrario por medio de una respuesta SNMP especialmente diseñada que desencadena un desbordamiento de búfer en la región stack de la memoria.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-11-06 CVE Reserved
  • 2007-11-06 First Exploit
  • 2007-12-19 CVE Published
  • 2024-08-07 CVE Updated
  • 2024-09-14 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-189: Numeric Errors
CAPEC
References (27)
URL Tag Source
http://bugs.gentoo.org/show_bug.cgi?id=201570 X_refsource_confirm
http://docs.info.apple.com/article.html?artnum=307179 X_refsource_confirm
http://www.cups.org/str.php?L2589 X_refsource_confirm
http://www.securityfocus.com/bid/26910 Vdb Entry
http://www.securityfocus.com/bid/26917 Vdb Entry
http://www.us-cert.gov/cas/techalerts/TA07-352A.html Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/39097 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/39101 Vdb Entry
URL Date SRC
https://www.exploit-db.com/exploits/30898 2007-11-06
URL Date SRC
URL Date SRC
http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html 2017-07-29
http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00003.html 2017-07-29
http://secunia.com/advisories/28113 2017-07-29
http://secunia.com/advisories/28129 2017-07-29
http://secunia.com/advisories/28136 2017-07-29
http://secunia.com/advisories/28200 2017-07-29
http://secunia.com/advisories/28386 2017-07-29
http://secunia.com/advisories/28441 2017-07-29
http://secunia.com/advisories/28636 2017-07-29
http://secunia.com/advisories/28676 2017-07-29
http://www.debian.org/security/2007/dsa-1437 2017-07-29
http://www.gentoo.org/security/en/glsa/glsa-200712-14.xml 2017-07-29
http://www.mandriva.com/security/advisories?name=MDVSA-2008:036 2017-07-29
http://www.novell.com/linux/security/advisories/suse_security_summary_report.html 2017-07-29
http://www.ubuntu.com/usn/usn-563-1 2017-07-29
http://www.vupen.com/english/advisories/2007/4238 2017-07-29
http://www.vupen.com/english/advisories/2007/4242 2017-07-29
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00908.html 2017-07-29
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Easy Software Products
Search vendor "Easy Software Products"
 Cups
Search vendor "Easy Software Products" for product "Cups"
 1.2.4
Search vendor "Easy Software Products" for product "Cups" and version "1.2.4"
-
Affected
in Apple
Search vendor "Apple"
 Mac Os X
Search vendor "Apple" for product "Mac Os X"
 10.5.1
Search vendor "Apple" for product "Mac Os X" and version "10.5.1"
-
Safe
Easy Software Products
Search vendor "Easy Software Products"
 Cups
Search vendor "Easy Software Products" for product "Cups"
 1.2.9
Search vendor "Easy Software Products" for product "Cups" and version "1.2.9"
-
Affected
in Apple
Search vendor "Apple"
 Mac Os X
Search vendor "Apple" for product "Mac Os X"
 10.5.1
Search vendor "Apple" for product "Mac Os X" and version "10.5.1"
-
Safe
Easy Software Products
Search vendor "Easy Software Products"
 Cups
Search vendor "Easy Software Products" for product "Cups"
 1.2.10
Search vendor "Easy Software Products" for product "Cups" and version "1.2.10"
-
Affected
in Apple
Search vendor "Apple"
 Mac Os X
Search vendor "Apple" for product "Mac Os X"
 10.5.1
Search vendor "Apple" for product "Mac Os X" and version "10.5.1"
-
Safe
Easy Software Products
Search vendor "Easy Software Products"
 Cups
Search vendor "Easy Software Products" for product "Cups"
 1.2.12
Search vendor "Easy Software Products" for product "Cups" and version "1.2.12"
-
Affected
in Apple
Search vendor "Apple"
 Mac Os X
Search vendor "Apple" for product "Mac Os X"
 10.5.1
Search vendor "Apple" for product "Mac Os X" and version "10.5.1"
-
Safe
Easy Software Products
Search vendor "Easy Software Products"
 Cups
Search vendor "Easy Software Products" for product "Cups"
 1.3.3
Search vendor "Easy Software Products" for product "Cups" and version "1.3.3"
-
Affected
in Apple
Search vendor "Apple"
 Mac Os X
Search vendor "Apple" for product "Mac Os X"
 10.5.1
Search vendor "Apple" for product "Mac Os X" and version "10.5.1"
-
Safe