exploits , vulnerabilities , articles , CUPS CGI Interface Remote Buffer Overflow Vulnerability

Title	CUPS CGI Interface Remote Buffer Overflow Vulnerability
Published	2008-03-18-12:00AM
Updated	2008-04-01-08:19PM
Class	Boundary Condition Error
CVE	CVE-2008-0047
Remote	Yes
Local	No
Credit	regenrecht
Vulnerable	S.u.S.E. openSUSE 10.3 S.u.S.E. openSUSE 10.2 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux Desktop Workstation 5 client RedHat Enterprise Linux Desktop 5 client RedHat Enterprise Linux AS 4 RedHat Enterprise Linux AS 3 RedHat Enterprise Linux 5 server RedHat Desktop 4.0 RedHat Desktop 3.0 Gentoo netprint/cups 1.2.12r6 Easy Software Products CUPS 1.3.5 Easy Software Products CUPS 1.2.12 Easy Software Products CUPS 1.2.10 Easy Software Products CUPS 1.2.9 Easy Software Products CUPS 1.1.23 rc1 Gentoo Linux Easy Software Products CUPS 1.1.23 Gentoo Linux Easy Software Products CUPS 1.1.22 rc1 Easy Software Products CUPS 1.1.22 Easy Software Products CUPS 1.1.21 MandrakeSoft Linux Mandrake 10.1 x86_64 MandrakeSoft Linux Mandrake 10.1 Easy Software Products CUPS 1.1.20 ALT Linux ALT Linux Compact 2.3 ALT Linux ALT Linux Junior 2.3 Gentoo Linux 1.4 _rc3 Gentoo Linux 1.4 _rc2 Gentoo Linux 1.4 _rc1 MandrakeSoft apcupsd 2006.0 MandrakeSoft Linux Mandrake 10.0 AMD64 MandrakeSoft Linux Mandrake 10.0 S.u.S.E. Linux Personal 9.1 Ubuntu Ubuntu Linux 4.1 ppc Ubuntu Ubuntu Linux 4.1 ia64 Ubuntu Ubuntu Linux 4.1 ia32 Easy Software Products CUPS 1.1.19 rc5 Easy Software Products CUPS 1.1.19 MandrakeSoft Linux Mandrake 9.2 amd64 MandrakeSoft Linux Mandrake 9.2 Turbolinux Appliance Server 1.0 Workgroup Edition Turbolinux Appliance Server 1.0 Hosting Edition Turbolinux Appliance Server Hosting Edition 1.0 Turbolinux Appliance Server Workgroup Edition 1.0 Turbolinux Home Turbolinux Turbolinux Desktop 10.0 Turbolinux Turbolinux Server 8.0 Turbolinux Turbolinux Workstation 8.0 Easy Software Products CUPS 1.1.18 Conectiva Linux 9.0 MandrakeSoft Corporate Server 2.1 x86_64 MandrakeSoft Corporate Server 2.1 MandrakeSoft Linux Mandrake 9.0 MandrakeSoft Multi Network Firewall 2.0 S.u.S.E. Linux Personal 8.2 Easy Software Products CUPS 1.1.17 RedHat Desktop 3.0 RedHat Enterprise Linux AS 3 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux WS 3 Easy Software Products CUPS 1.1.16 MandrakeSoft Linux Mandrake 9.0 Easy Software Products CUPS 1.1.15 Conectiva Linux Enterprise Edition 1.0 S.u.S.E. Linux 8.1 Easy Software Products CUPS 1.1.14 Conectiva Linux 8.0 Debian Linux 3.0 sparc Debian Linux 3.0 s/390 Debian Linux 3.0 ppc Debian Linux 3.0 mipsel Debian Linux 3.0 mips Debian Linux 3.0 m68k Debian Linux 3.0 ia64 Debian Linux 3.0 ia32 Debian Linux 3.0 hppa Debian Linux 3.0 arm Debian Linux 3.0 alpha Debian Linux 3.0 MandrakeSoft Linux Mandrake 8.2 ppc MandrakeSoft Linux Mandrake 8.2 Easy Software Products CUPS 1.1.13 Easy Software Products CUPS 1.1.12 S.u.S.E. Linux 8.0 i386 S.u.S.E. Linux 8.0 Easy Software Products CUPS 1.1.10 Caldera OpenLinux Server 3.1.1 Caldera OpenLinux Workstation 3.1.1 Conectiva Linux 7.0 Conectiva Linux 6.0 MandrakeSoft Linux Mandrake 8.1 ia64 MandrakeSoft Linux Mandrake 8.1 S.u.S.E. Linux 7.3 sparc S.u.S.E. Linux 7.3 ppc S.u.S.E. Linux 7.3 i386 Easy Software Products CUPS 1.1.7 Easy Software Products CUPS 1.1.6 Caldera OpenLinux Server 3.1 Caldera OpenLinux Workstation 3.1 MandrakeSoft Linux Mandrake 8.0 ppc MandrakeSoft Linux Mandrake 8.0 S.u.S.E. Linux 7.2 i386 S.u.S.E. Linux 7.1 x86 S.u.S.E. Linux 7.1 sparc S.u.S.E. Linux 7.1 ppc S.u.S.E. Linux 7.1 alpha Easy Software Products CUPS 1.1.4 5 Easy Software Products CUPS 1.1.4 3 MandrakeSoft Linux Mandrake 7.2 Easy Software Products CUPS 1.1.4 2 Debian Linux 2.3 Easy Software Products CUPS 1.1.4 Debian Linux 2.3 MandrakeSoft Linux Mandrake 7.2 Easy Software Products CUPS 1.1.1 RedHat PowerTools 7.0 DrPhibez and Nitro187 Guild FTPD 1.1.19 rc5 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia64 Debian Linux 4.0 ia32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 Apple Mac OS X Server 10.5.2 Apple Mac OS X 10.5.2
Not Vulnerable
Code	Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: content@securitydot.net.
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-17 Digital Scribe Cross Site Scripting and SQL Injection Vulnerabilities
• 2009-12-17 WP-Forum WordPress Plugin Multiple SQL Injection Vulnerabilities
• 2009-12-17 Quick Heal AntiVirus Insecure Program File Permissions Local Privilege Escalation Vulnerability
• 2009-12-17 IntelliCom NetBiter webSCADA Multiple Default Password Security Bypass Vulnerabilities
• 2009-12-17 Webmatic Multiple Unspecified SQL Injection and Cross-Site Scripting Vulnerabilities
• 2009-12-17 ManageEngine Password Manager Pro Cross Site Scripting Vulnerability
• 2009-12-17 HP OpenView Storage Data Protector Multiple Remote Code Execution Vulnerabilities
• 2009-12-17 iDevSpot iSupport Multiple Cross Site Scripting Vulnerabilities
• 2009-12-17 GNU Automake Insecure Directory Permissions Vulnerability
• 2009-12-17 Mozilla Firefox CVE-2009-3979 Multiple Remote Memory Corruption Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Thu, 17 Dec 2009 22:40:30 +0000