// For flags

CVE-2008-0882

cups: double free vulnerability in process_browse_data()

Severity Score

9.8
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Double free vulnerability in the process_browse_data function in CUPS 1.3.5 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via crafted UDP Browse packets to the cupsd port (631/udp), related to an unspecified manipulation of a remote printer. NOTE: some of these details are obtained from third party information.

Una vulnerabilidad de doble liberación en la función process_browse_data en CUPS versión 1.3.5, permite a los atacantes remotos causar una denegación de servicio (bloqueo del demonio) y posiblemente ejecutar código arbitrario por medio de paquetes Browse UDP diseñados hacia el puerto cupsd (631/udp), relacionado con una manipulación no especificada de una impresora remota. NOTA: algunos de estos datos fueron obtenidos de la información de terceros.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2008-02-21 CVE Reserved
  • 2008-02-21 CVE Published
  • 2024-08-07 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (28)
URL Tag Source
http://docs.info.apple.com/article.html?artnum=307562 X_refsource_confirm
http://secunia.com/advisories/29132 Third Party Advisory
http://secunia.com/advisories/29251 Third Party Advisory
http://secunia.com/advisories/29420 Third Party Advisory
http://secunia.com/advisories/29485 Third Party Advisory
http://secunia.com/advisories/29603 Third Party Advisory
http://secunia.com/advisories/29634 Third Party Advisory
http://www.cups.org/str.php?L2656 X_refsource_confirm
http://www.securityfocus.com/bid/27906 Vdb Entry
http://www.securitytracker.com/id?1019473 Vdb Entry
http://www.vupen.com/english/advisories/2008/0623 Vdb Entry
http://www.vupen.com/english/advisories/2008/0924/references Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9625 Signature
URL Date SRC
URL Date SRC
URL Date SRC
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html 2017-09-29
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00000.html 2017-09-29
http://secunia.com/advisories/28994 2017-09-29
http://secunia.com/advisories/29067 2017-09-29
http://secunia.com/advisories/29120 2017-09-29
http://security.gentoo.org/glsa/glsa-200804-01.xml 2017-09-29
http://www.debian.org/security/2008/dsa-1530 2017-09-29
http://www.mandriva.com/security/advisories?name=MDVSA-2008:050 2017-09-29
http://www.mandriva.com/security/advisories?name=MDVSA-2008:051 2017-09-29
http://www.redhat.com/support/errata/RHSA-2008-0157.html 2017-09-29
http://www.ubuntu.com/usn/usn-598-1 2017-09-29
https://bugzilla.redhat.com/show_bug.cgi?id=433758 2008-02-21
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00792.html 2017-09-29
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00832.html 2017-09-29
https://access.redhat.com/security/cve/CVE-2008-0882 2008-02-21
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cups
Search vendor "Cups"
 Cups
Search vendor "Cups" for product "Cups"
 1.3.5
Search vendor "Cups" for product "Cups" and version "1.3.5"
-
Affected