Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2002-1383 (GCVE-0-2002-1383)
Vulnerability from cvelistv5 – Published: 2002-12-20 05:00 – Updated: 2024-08-08 03:19
VLAI
EPSS
Summary
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
15 references
Date Public
2002-12-19 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T03:19:28.833Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "7858",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/7858"
},
{
"name": "7843",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/7843"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"tags": [
"mailing-list",
"x_refsource_VULNWATCH",
"x_transferred"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"name": "9325",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/9325/"
},
{
"name": "CSSA-2003-004.0",
"tags": [
"vendor-advisory",
"x_refsource_CALDERA",
"x_transferred"
],
"url": "ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt"
},
{
"name": "7756",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/7756/"
},
{
"name": "7907",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/7907"
},
{
"name": "7913",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/7913/"
},
{
"name": "7794",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/7794"
},
{
"name": "SuSE-SA:2003:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"name": "RHSA-2002:295",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
},
{
"name": "7803",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/7803"
},
{
"name": "8080",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/8080/"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-12-19T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "7858",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/7858"
},
{
"name": "7843",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/7843"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"tags": [
"mailing-list",
"x_refsource_VULNWATCH"
],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"name": "9325",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/9325/"
},
{
"name": "CSSA-2003-004.0",
"tags": [
"vendor-advisory",
"x_refsource_CALDERA"
],
"url": "ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt"
},
{
"name": "7756",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/7756/"
},
{
"name": "7907",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/7907"
},
{
"name": "7913",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/7913/"
},
{
"name": "7794",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/7794"
},
{
"name": "SuSE-SA:2003:002",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"name": "RHSA-2002:295",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
},
{
"name": "7803",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/7803"
},
{
"name": "8080",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/8080/"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-1383",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "7858",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7858"
},
{
"name": "7843",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7843"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"refsource": "VULNWATCH",
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"name": "9325",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/9325/"
},
{
"name": "CSSA-2003-004.0",
"refsource": "CALDERA",
"url": "ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt"
},
{
"name": "7756",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7756/"
},
{
"name": "7907",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7907"
},
{
"name": "7913",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7913/"
},
{
"name": "7794",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7794"
},
{
"name": "SuSE-SA:2003:002",
"refsource": "SUSE",
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"name": "http://www.idefense.com/advisory/12.19.02.txt",
"refsource": "MISC",
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"name": "RHSA-2002:295",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
},
{
"name": "7803",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7803"
},
{
"name": "8080",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/8080/"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-1383",
"datePublished": "2002-12-20T05:00:00.000Z",
"dateReserved": "2002-12-18T00:00:00.000Z",
"dateUpdated": "2024-08-08T03:19:28.833Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2002-1383",
"date": "2026-05-29",
"epss": "0.16212",
"percentile": "0.94923"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68BD578F-CCAD-4515-9205-EB4F297C6DB4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F3182CA2-7375-43BC-A0E5-DE11D4B65EE3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FCF4C8D0-3030-4DD5-800B-76A582A4CD0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734D0C2C-F71F-461A-87EE-202C6B706753\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3F0F402D-5CD0-4477-8B59-C753CECB02BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"959F7AFA-ED20-434C-993F-06C2A8574662\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D4F5A0A4-2884-46CA-A846-8B954EB80CFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1741CC9D-C4A8-48F9-86CF-EC20AE2A6BE7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"35E65857-12C7-49DE-AD27-3CACD456231C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"47CEF035-57A6-470B-916A-E5562C28E866\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D414984E-4F6B-4278-8346-968587E4B18E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33C36DCB-2FDD-44E6-85E8-875575AAE69E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5428EE6-F90A-4BB6-9D8C-8B99E80AB6DF\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CDCF4FB3-F781-46D5-BEE7-485B3DC78B83\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"56CC0444-570C-4BB5-B53A-C5CA0BD87935\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.\"}, {\"lang\": \"es\", \"value\": \"M\\u00faltiples desbordamientos de enteros en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 permiten a atacantes remotos ejecutar c\\u00f3digo arbitrario mediante\\r\\nel interfaz HTTP CUPSd, como ha sido demostrado por vanilla-coke, y\\r\\nel c\\u00f3digo de manejo de im\\u00e1genes en filtros CUPS, como ha sido demostrado por mksum\"}]",
"id": "CVE-2002-1383",
"lastModified": "2024-11-20T23:41:10.690",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 10.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2002-12-26T05:00:00.000",
"references": "[{\"url\": \"ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/7756/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/7794\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/7803\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/7843\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/7858\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/7907\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/7913/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/8080/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/9325/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.idefense.com/advisory/12.19.02.txt\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://www.novell.com/linux/security/advisories/2003_002_cups.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2002-295.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/7756/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/7794\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/7803\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/7843\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/7858\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/7907\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/7913/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/8080/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/9325/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.idefense.com/advisory/12.19.02.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"http://www.novell.com/linux/security/advisories/2003_002_cups.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2002-295.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2002-1383\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2002-12-26T05:00:00.000\",\"lastModified\":\"2026-04-16T00:27:16.627\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples desbordamientos de enteros en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 permiten a atacantes remotos ejecutar c\u00f3digo arbitrario mediante\\r\\nel interfaz HTTP CUPSd, como ha sido demostrado por vanilla-coke, y\\r\\nel c\u00f3digo de manejo de im\u00e1genes en filtros CUPS, como ha sido demostrado por mksum\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68BD578F-CCAD-4515-9205-EB4F297C6DB4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3182CA2-7375-43BC-A0E5-DE11D4B65EE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCF4C8D0-3030-4DD5-800B-76A582A4CD0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734D0C2C-F71F-461A-87EE-202C6B706753\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F0F402D-5CD0-4477-8B59-C753CECB02BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"959F7AFA-ED20-434C-993F-06C2A8574662\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4F5A0A4-2884-46CA-A846-8B954EB80CFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1741CC9D-C4A8-48F9-86CF-EC20AE2A6BE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35E65857-12C7-49DE-AD27-3CACD456231C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47CEF035-57A6-470B-916A-E5562C28E866\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D414984E-4F6B-4278-8346-968587E4B18E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C36DCB-2FDD-44E6-85E8-875575AAE69E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5428EE6-F90A-4BB6-9D8C-8B99E80AB6DF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDCF4FB3-F781-46D5-BEE7-485B3DC78B83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56CC0444-570C-4BB5-B53A-C5CA0BD87935\"}]}]}],\"references\":[{\"url\":\"ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/7756/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/7794\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/7803\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/7843\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/7858\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/7907\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/7913/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/8080/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/9325/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.idefense.com/advisory/12.19.02.txt\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://www.novell.com/linux/security/advisories/2003_002_cups.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2002-295.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/7756/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/7794\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/7803\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/7843\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/7858\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/7907\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/7913/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/8080/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/9325/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.idefense.com/advisory/12.19.02.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://www.novell.com/linux/security/advisories/2003_002_cups.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2002-295.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
}
}
FKIE_CVE-2002-1383
Vulnerability from fkie_nvd - Published: 2002-12-26 05:00 - Updated: 2026-04-16 00:27
Severity
Summary
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| easy_software_products | cups | 1.0.4 | |
| easy_software_products | cups | 1.0.4_8 | |
| easy_software_products | cups | 1.1.1 | |
| easy_software_products | cups | 1.1.4 | |
| easy_software_products | cups | 1.1.4_2 | |
| easy_software_products | cups | 1.1.4_3 | |
| easy_software_products | cups | 1.1.4_5 | |
| easy_software_products | cups | 1.1.6 | |
| easy_software_products | cups | 1.1.7 | |
| easy_software_products | cups | 1.1.10 | |
| easy_software_products | cups | 1.1.13 | |
| easy_software_products | cups | 1.1.14 | |
| easy_software_products | cups | 1.1.17 | |
| apple | mac_os_x | 10.2 | |
| apple | mac_os_x | 10.2.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "68BD578F-CCAD-4515-9205-EB4F297C6DB4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*",
"matchCriteriaId": "F3182CA2-7375-43BC-A0E5-DE11D4B65EE3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FCF4C8D0-3030-4DD5-800B-76A582A4CD0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "734D0C2C-F71F-461A-87EE-202C6B706753",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*",
"matchCriteriaId": "3F0F402D-5CD0-4477-8B59-C753CECB02BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*",
"matchCriteriaId": "959F7AFA-ED20-434C-993F-06C2A8574662",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*",
"matchCriteriaId": "D4F5A0A4-2884-46CA-A846-8B954EB80CFA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "1741CC9D-C4A8-48F9-86CF-EC20AE2A6BE7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*",
"matchCriteriaId": "35E65857-12C7-49DE-AD27-3CACD456231C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*",
"matchCriteriaId": "47CEF035-57A6-470B-916A-E5562C28E866",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*",
"matchCriteriaId": "D414984E-4F6B-4278-8346-968587E4B18E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*",
"matchCriteriaId": "33C36DCB-2FDD-44E6-85E8-875575AAE69E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*",
"matchCriteriaId": "A5428EE6-F90A-4BB6-9D8C-8B99E80AB6DF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*",
"matchCriteriaId": "CDCF4FB3-F781-46D5-BEE7-485B3DC78B83",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "56CC0444-570C-4BB5-B53A-C5CA0BD87935",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun."
},
{
"lang": "es",
"value": "M\u00faltiples desbordamientos de enteros en Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 permiten a atacantes remotos ejecutar c\u00f3digo arbitrario mediante\r\nel interfaz HTTP CUPSd, como ha sido demostrado por vanilla-coke, y\r\nel c\u00f3digo de manejo de im\u00e1genes en filtros CUPS, como ha sido demostrado por mksum"
}
],
"id": "CVE-2002-1383",
"lastModified": "2026-04-16T00:27:16.627",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2002-12-26T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt"
},
{
"source": "cve@mitre.org",
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/7756/"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/7794"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/7803"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/7843"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/7858"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/7907"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/7913/"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/8080/"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/9325/"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Vendor Advisory"
],
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"source": "cve@mitre.org",
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/7756/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/7794"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/7803"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/7843"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/7858"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/7907"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/7913/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/8080/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/9325/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Vendor Advisory"
],
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-M243-HVG9-QC96
Vulnerability from github – Published: 2022-05-03 03:08 – Updated: 2022-05-03 03:08
VLAI
Details
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.
{
"affected": [],
"aliases": [
"CVE-2002-1383"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2002-12-26T05:00:00Z",
"severity": "HIGH"
},
"details": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.",
"id": "GHSA-m243-hvg9-qc96",
"modified": "2022-05-03T03:08:08Z",
"published": "2022-05-03T03:08:08Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1383"
},
{
"type": "WEB",
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/7756"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/7794"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/7803"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/7843"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/7858"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/7907"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/7913"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/8080"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/9325"
},
{
"type": "WEB",
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"type": "WEB",
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2002-1383
Vulnerability from gsd - Updated: 2023-12-13 01:24Details
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2002-1383",
"description": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.",
"id": "GSD-2002-1383",
"references": [
"https://www.debian.org/security/2003/dsa-232",
"https://access.redhat.com/errata/RHSA-2002:295"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2002-1383"
],
"details": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.",
"id": "GSD-2002-1383",
"modified": "2023-12-13T01:24:10.212230Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-1383",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "7858",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7858"
},
{
"name": "7843",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7843"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"refsource": "VULNWATCH",
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"name": "9325",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/9325/"
},
{
"name": "CSSA-2003-004.0",
"refsource": "CALDERA",
"url": "ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt"
},
{
"name": "7756",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7756/"
},
{
"name": "7907",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7907"
},
{
"name": "7913",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7913/"
},
{
"name": "7794",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7794"
},
{
"name": "SuSE-SA:2003:002",
"refsource": "SUSE",
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"name": "http://www.idefense.com/advisory/12.19.02.txt",
"refsource": "MISC",
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"name": "RHSA-2002:295",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
},
{
"name": "7803",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/7803"
},
{
"name": "8080",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/8080/"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-1383"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2002:295",
"refsource": "REDHAT",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2002-295.html"
},
{
"name": "http://www.idefense.com/advisory/12.19.02.txt",
"refsource": "MISC",
"tags": [
"Exploit",
"Vendor Advisory"
],
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"refsource": "VULNWATCH",
"tags": [],
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"name": "CSSA-2003-004.0",
"refsource": "CALDERA",
"tags": [],
"url": "ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-004.0.txt"
},
{
"name": "SuSE-SA:2003:002",
"refsource": "SUSE",
"tags": [],
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"name": "7907",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/7907"
},
{
"name": "7756",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/7756/"
},
{
"name": "7794",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/7794"
},
{
"name": "7803",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/7803"
},
{
"name": "7843",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/7843"
},
{
"name": "7858",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/7858"
},
{
"name": "7913",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/7913/"
},
{
"name": "8080",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/8080/"
},
{
"name": "9325",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/9325/"
},
{
"name": "20021219 iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)",
"refsource": "BUGTRAQ",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2016-10-18T02:26Z",
"publishedDate": "2002-12-26T05:00Z"
}
}
}
RHSA-2002:295
Vulnerability from csaf_redhat - Published: 2003-01-13 15:34 - Updated: 2025-11-21 17:25Summary
Red Hat Security Advisory: : Updated CUPS packages fix various vulnerabilities
Severity
Important
Notes
Topic: Updated CUPS packages are available for Red Hat Linux 7.3 and 8.0 which fix
various security issues.
Details: The Common UNIX Printing System (CUPS) provides a portable printing
layer. A number of vulnerabilities have been discovered in CUPS.
CUPS was distributed with Red Hat Linux 7.3 and 8.0 but is not
installed by default.
1. An integer overflow exists in the CUPS HTTP interface that allows
a local attacker to gain the permissions of the 'lp' user. (CAN-2002-1383)
2. A race condition exists in the creation of a pid file which allows
an attacker who already has privileges of the 'lp' user (for example from
utilizing a different exploit) to create or overwrite any file as
root, leading to arbitrary code execution. (CAN-2002-1366)
3. It is possible to remotely add a printer to CUPS by sending a
specially crafted UDP packet. If an attacker utilizes this vulnerability,
they could add a printer with a tainted name that if clicked on in the
web administration interface could be used to exploit other
vulnerabilities. (CAN-2002-1367)
By utilizing this vulnerability, an attacker could take a number of steps
to be able to get hold of the certificate used to access the administrative
section of the CUPS server and potentially add a printer that will execute
commands with root privileges.
4. Problems with chunked encoding and negative content length handling
in the CUPS HTTP interface can cause CUPS to crash. On Red Hat Linux
platforms this can cause a denial of service (DoS) against CUPS.
(CAN-2002-1368)
5. A number of integer overflows exist in the image handling code of
the filters in CUPS. In addition, CUPS does not properly check for
zero width GIF images. These vulnerabilities allow an attacker who has
the ability to print to run arbitrary code as the 'lp' user. (CAN-2002-1371)
6. An integer overflow exists in the CUPS pdftops filter. This can be
exploited by an attacker who is able to print sending a carefully
crafted PDF file which can execute arbitrary commands as the 'lp' user.
(CAN-2002-1384)
7. A buffer overflow exists in setting up the job management options.
When combined with other vulnerabilities, this could allow a local user
to gain root privileges. This issue only affects the version of CUPS
shipped with Red Hat Linux 7.3. (CAN-2002-1369)
8. A bug in the select() call would allow an easy DoS attack which would
cause CUPS to not recover once the DoS has stopped. (CAN-2002-1372)
Red Hat Linux 7.3 and 8.0 were shipped with versions of CUPS that are
vulnerable to these issues. All users of CUPS are advised to upgrade to the
erratum packages which contain a patch to correct these issue.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a "need authorization" page, as demonstrated by new-coke.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding.
jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack.
filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta.
Affected products
Threats
Impact
Important
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.
Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.
Affected products
Threats
Impact
Important
References
34 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated CUPS packages are available for Red Hat Linux 7.3 and 8.0 which fix\nvarious security issues.",
"title": "Topic"
},
{
"category": "general",
"text": "The Common UNIX Printing System (CUPS) provides a portable printing\nlayer. A number of vulnerabilities have been discovered in CUPS.\n\nCUPS was distributed with Red Hat Linux 7.3 and 8.0 but is not\ninstalled by default.\n\n1. An integer overflow exists in the CUPS HTTP interface that allows\na local attacker to gain the permissions of the \u0027lp\u0027 user. (CAN-2002-1383)\n\n2. A race condition exists in the creation of a pid file which allows\nan attacker who already has privileges of the \u0027lp\u0027 user (for example from\nutilizing a different exploit) to create or overwrite any file as\nroot, leading to arbitrary code execution. (CAN-2002-1366)\n\n3. It is possible to remotely add a printer to CUPS by sending a\nspecially crafted UDP packet. If an attacker utilizes this vulnerability,\nthey could add a printer with a tainted name that if clicked on in the\nweb administration interface could be used to exploit other\nvulnerabilities. (CAN-2002-1367)\n\nBy utilizing this vulnerability, an attacker could take a number of steps\nto be able to get hold of the certificate used to access the administrative\nsection of the CUPS server and potentially add a printer that will execute\ncommands with root privileges.\n\n4. Problems with chunked encoding and negative content length handling\nin the CUPS HTTP interface can cause CUPS to crash. On Red Hat Linux\nplatforms this can cause a denial of service (DoS) against CUPS. \n(CAN-2002-1368)\n\n5. A number of integer overflows exist in the image handling code of\nthe filters in CUPS. In addition, CUPS does not properly check for\nzero width GIF images. These vulnerabilities allow an attacker who has\nthe ability to print to run arbitrary code as the \u0027lp\u0027 user. (CAN-2002-1371)\n\n6. An integer overflow exists in the CUPS pdftops filter. This can be\nexploited by an attacker who is able to print sending a carefully\ncrafted PDF file which can execute arbitrary commands as the \u0027lp\u0027 user.\n(CAN-2002-1384)\n\n7. A buffer overflow exists in setting up the job management options.\nWhen combined with other vulnerabilities, this could allow a local user\nto gain root privileges. This issue only affects the version of CUPS\nshipped with Red Hat Linux 7.3. (CAN-2002-1369)\n\n8. A bug in the select() call would allow an easy DoS attack which would\ncause CUPS to not recover once the DoS has stopped. (CAN-2002-1372)\n\nRed Hat Linux 7.3 and 8.0 were shipped with versions of CUPS that are\nvulnerable to these issues. All users of CUPS are advised to upgrade to the\nerratum packages which contain a patch to correct these issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2002:295",
"url": "https://access.redhat.com/errata/RHSA-2002:295"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2002_295.json"
}
],
"title": "Red Hat Security Advisory: : Updated CUPS packages fix various vulnerabilities",
"tracking": {
"current_release_date": "2025-11-21T17:25:18+00:00",
"generator": {
"date": "2025-11-21T17:25:18+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2002:295",
"initial_release_date": "2003-01-13T15:34:00+00:00",
"revision_history": [
{
"date": "2003-01-13T15:34:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2003-02-07T00:00:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:25:18+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Linux 7.3",
"product": {
"name": "Red Hat Linux 7.3",
"product_id": "Red Hat Linux 7.3",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:linux:7.3"
}
}
},
{
"category": "product_name",
"name": "Red Hat Linux 8.0",
"product": {
"name": "Red Hat Linux 8.0",
"product_id": "Red Hat Linux 8.0",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:linux:8.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Linux"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2002-1366",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616888"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1366"
},
{
"category": "external",
"summary": "RHBZ#1616888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616888"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1366",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1366"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1366",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1366"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1367",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616889"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a \"need authorization\" page, as demonstrated by new-coke.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1367"
},
{
"category": "external",
"summary": "RHBZ#1616889",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616889"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1367",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1367"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1367",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1367"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1368",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616890"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1368"
},
{
"category": "external",
"summary": "RHBZ#1616890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616890"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1368",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1368"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1368",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1368"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1369",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616891"
}
],
"notes": [
{
"category": "description",
"text": "jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1369"
},
{
"category": "external",
"summary": "RHBZ#1616891",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616891"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1369",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1369"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1369",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1369"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1371",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616892"
}
],
"notes": [
{
"category": "description",
"text": "filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1371"
},
{
"category": "external",
"summary": "RHBZ#1616892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1371",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1371"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1371",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1371"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1372",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616893"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1372"
},
{
"category": "external",
"summary": "RHBZ#1616893",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616893"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1372",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1372"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1383",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616902"
}
],
"notes": [
{
"category": "description",
"text": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1383"
},
{
"category": "external",
"summary": "RHBZ#1616902",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616902"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1383",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1383"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1383",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1383"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1384",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616903"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1384"
},
{
"category": "external",
"summary": "RHBZ#1616903",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616903"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1384",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1384"
}
],
"release_date": "2002-12-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "security flaw"
}
]
}
RHSA-2002_295
Vulnerability from csaf_redhat - Published: 2003-01-13 15:34 - Updated: 2024-11-21 22:34Summary
Red Hat Security Advisory: : Updated CUPS packages fix various vulnerabilities
Severity
Important
Notes
Topic: Updated CUPS packages are available for Red Hat Linux 7.3 and 8.0 which fix
various security issues.
Details: The Common UNIX Printing System (CUPS) provides a portable printing
layer. A number of vulnerabilities have been discovered in CUPS.
CUPS was distributed with Red Hat Linux 7.3 and 8.0 but is not
installed by default.
1. An integer overflow exists in the CUPS HTTP interface that allows
a local attacker to gain the permissions of the 'lp' user. (CAN-2002-1383)
2. A race condition exists in the creation of a pid file which allows
an attacker who already has privileges of the 'lp' user (for example from
utilizing a different exploit) to create or overwrite any file as
root, leading to arbitrary code execution. (CAN-2002-1366)
3. It is possible to remotely add a printer to CUPS by sending a
specially crafted UDP packet. If an attacker utilizes this vulnerability,
they could add a printer with a tainted name that if clicked on in the
web administration interface could be used to exploit other
vulnerabilities. (CAN-2002-1367)
By utilizing this vulnerability, an attacker could take a number of steps
to be able to get hold of the certificate used to access the administrative
section of the CUPS server and potentially add a printer that will execute
commands with root privileges.
4. Problems with chunked encoding and negative content length handling
in the CUPS HTTP interface can cause CUPS to crash. On Red Hat Linux
platforms this can cause a denial of service (DoS) against CUPS.
(CAN-2002-1368)
5. A number of integer overflows exist in the image handling code of
the filters in CUPS. In addition, CUPS does not properly check for
zero width GIF images. These vulnerabilities allow an attacker who has
the ability to print to run arbitrary code as the 'lp' user. (CAN-2002-1371)
6. An integer overflow exists in the CUPS pdftops filter. This can be
exploited by an attacker who is able to print sending a carefully
crafted PDF file which can execute arbitrary commands as the 'lp' user.
(CAN-2002-1384)
7. A buffer overflow exists in setting up the job management options.
When combined with other vulnerabilities, this could allow a local user
to gain root privileges. This issue only affects the version of CUPS
shipped with Red Hat Linux 7.3. (CAN-2002-1369)
8. A bug in the select() call would allow an easy DoS attack which would
cause CUPS to not recover once the DoS has stopped. (CAN-2002-1372)
Red Hat Linux 7.3 and 8.0 were shipped with versions of CUPS that are
vulnerable to these issues. All users of CUPS are advised to upgrade to the
erratum packages which contain a patch to correct these issue.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a "need authorization" page, as demonstrated by new-coke.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding.
jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack.
filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif.
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta.
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.
Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.
Affected products
Threats
Impact
Important
References
34 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated CUPS packages are available for Red Hat Linux 7.3 and 8.0 which fix\nvarious security issues.",
"title": "Topic"
},
{
"category": "general",
"text": "The Common UNIX Printing System (CUPS) provides a portable printing\nlayer. A number of vulnerabilities have been discovered in CUPS.\n\nCUPS was distributed with Red Hat Linux 7.3 and 8.0 but is not\ninstalled by default.\n\n1. An integer overflow exists in the CUPS HTTP interface that allows\na local attacker to gain the permissions of the \u0027lp\u0027 user. (CAN-2002-1383)\n\n2. A race condition exists in the creation of a pid file which allows\nan attacker who already has privileges of the \u0027lp\u0027 user (for example from\nutilizing a different exploit) to create or overwrite any file as\nroot, leading to arbitrary code execution. (CAN-2002-1366)\n\n3. It is possible to remotely add a printer to CUPS by sending a\nspecially crafted UDP packet. If an attacker utilizes this vulnerability,\nthey could add a printer with a tainted name that if clicked on in the\nweb administration interface could be used to exploit other\nvulnerabilities. (CAN-2002-1367)\n\nBy utilizing this vulnerability, an attacker could take a number of steps\nto be able to get hold of the certificate used to access the administrative\nsection of the CUPS server and potentially add a printer that will execute\ncommands with root privileges.\n\n4. Problems with chunked encoding and negative content length handling\nin the CUPS HTTP interface can cause CUPS to crash. On Red Hat Linux\nplatforms this can cause a denial of service (DoS) against CUPS. \n(CAN-2002-1368)\n\n5. A number of integer overflows exist in the image handling code of\nthe filters in CUPS. In addition, CUPS does not properly check for\nzero width GIF images. These vulnerabilities allow an attacker who has\nthe ability to print to run arbitrary code as the \u0027lp\u0027 user. (CAN-2002-1371)\n\n6. An integer overflow exists in the CUPS pdftops filter. This can be\nexploited by an attacker who is able to print sending a carefully\ncrafted PDF file which can execute arbitrary commands as the \u0027lp\u0027 user.\n(CAN-2002-1384)\n\n7. A buffer overflow exists in setting up the job management options.\nWhen combined with other vulnerabilities, this could allow a local user\nto gain root privileges. This issue only affects the version of CUPS\nshipped with Red Hat Linux 7.3. (CAN-2002-1369)\n\n8. A bug in the select() call would allow an easy DoS attack which would\ncause CUPS to not recover once the DoS has stopped. (CAN-2002-1372)\n\nRed Hat Linux 7.3 and 8.0 were shipped with versions of CUPS that are\nvulnerable to these issues. All users of CUPS are advised to upgrade to the\nerratum packages which contain a patch to correct these issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2002:295",
"url": "https://access.redhat.com/errata/RHSA-2002:295"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2002_295.json"
}
],
"title": "Red Hat Security Advisory: : Updated CUPS packages fix various vulnerabilities",
"tracking": {
"current_release_date": "2024-11-21T22:34:21+00:00",
"generator": {
"date": "2024-11-21T22:34:21+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2002:295",
"initial_release_date": "2003-01-13T15:34:00+00:00",
"revision_history": [
{
"date": "2003-01-13T15:34:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2003-02-07T00:00:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-21T22:34:21+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Linux 7.3",
"product": {
"name": "Red Hat Linux 7.3",
"product_id": "Red Hat Linux 7.3",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:linux:7.3"
}
}
},
{
"category": "product_name",
"name": "Red Hat Linux 8.0",
"product": {
"name": "Red Hat Linux 8.0",
"product_id": "Red Hat Linux 8.0",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:linux:8.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Linux"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2002-1366",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616888"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1366"
},
{
"category": "external",
"summary": "RHBZ#1616888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616888"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1366",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1366"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1366",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1366"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1367",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616889"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a \"need authorization\" page, as demonstrated by new-coke.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1367"
},
{
"category": "external",
"summary": "RHBZ#1616889",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616889"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1367",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1367"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1367",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1367"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1368",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616890"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1368"
},
{
"category": "external",
"summary": "RHBZ#1616890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616890"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1368",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1368"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1368",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1368"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1369",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616891"
}
],
"notes": [
{
"category": "description",
"text": "jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1369"
},
{
"category": "external",
"summary": "RHBZ#1616891",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616891"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1369",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1369"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1369",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1369"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1371",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616892"
}
],
"notes": [
{
"category": "description",
"text": "filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1371"
},
{
"category": "external",
"summary": "RHBZ#1616892",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616892"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1371",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1371"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1371",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1371"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1372",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616893"
}
],
"notes": [
{
"category": "description",
"text": "Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1372"
},
{
"category": "external",
"summary": "RHBZ#1616893",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616893"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1372",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1372"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1383",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616902"
}
],
"notes": [
{
"category": "description",
"text": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1383"
},
{
"category": "external",
"summary": "RHBZ#1616902",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616902"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1383",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1383"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1383",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1383"
}
],
"release_date": "2002-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2002-1384",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1616903"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2002-1384"
},
{
"category": "external",
"summary": "RHBZ#1616903",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616903"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2002-1384",
"url": "https://www.cve.org/CVERecord?id=CVE-2002-1384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1384"
}
],
"release_date": "2002-12-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2003-01-13T15:34:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"Red Hat Linux 7.3",
"Red Hat Linux 8.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2002:295"
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "security flaw"
}
]
}
VAR-200212-0649
Vulnerability from variot - Updated: 2023-12-18 12:33Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ Common Unix Printing System (CUPS) Some UNIX Included in the UNIX Can be used universally in the environment Internet Printing Protocol version 1.1 (IPP/1.1) Is a printing system that supports Red Hat Linux 7.3 as well as 8.0 It is also bundled with. this CUPS Has the following security issues: still, Red Hat Linux Then CUPS Is disabled in the default installation. 1. Overflow due to overflow of integer digits * [CAN-2002-1383] CUPS There are a few problems with overflowing integer digits. 2. Resource race condition for temporary file generation processing (race condition) Problem * [CAN-2002-1366] CUPS Is /etc/cups/certs/ less than pid ( Generation time CUPS Process ID) Creates a temporary file with a file name of, so a local attacker can predict how the temporary file name is determined. Therefore, by creating a file with the same name as the temporary file that points to the intended file, root Any file can be overwritten or created with authority. In order to execute this attack, 1. In advance, lp User rights are required. 3. Printer addition mechanism / Problems with the access control function * [CAN-2002-1367] Malicious maliciously created remotely UDP Packet CUPS By sending to, you can bypass the authentication and add a printer. Furthermore, there is a problem that the access control mechanism of the printer addition mechanism neglects the validity check. The added printer information is root Since it is interpreted by the authority, any print can be added by using these problems together. As a result, local attackers root Elevation to privilege is possible. 4. Intentionally created HTTP By communication CUPSd That crashes [CAN-2002-1368] CUPS Then IPP To accept connections on the backend HTTP server (CUPSd) Is included. this HTTP Server HTTP The remote attacker is not able to verify the validity of the range of received values in the handling part of Contents-Length: The field was set to a negative value, or intentionally assembled and chunked HTTP By trying to communicate with the protocol, CUPS Can be put into a denial of service. To restore normal operation CUPSd Needs to be restarted. 5. strncat Problem of buffer overflow caused by function [CAN-2002-1369] CUPS Has a buffer overflow problem when receiving a printer job with a specific attribute value. By using this issue, a remote attacker can root It is possible to execute arbitrary code with authority. To take advantage of this issue, 3. Need to take advantage of the problem. 6.GIF Problems when handling file formats [CAN-2002-1371] CUPS In GIF Width in the part that handles format files (width) There is a problem with the process of validating the value of. For this reason, remote attackers are deliberately assembled (width) But '0' Is GIF Overwrite the allocated memory contents by interpreting the format file, CUPS An arbitrary code may be executed with the execution right. 7. File descriptor issues with sockets and files * [CAN-2002-1372] CUPS Has a problem that does not properly close file descriptors for sockets and files. For this reason, local attackers can use this issue to cause memory leaks, CUPS It is possible to put the entire system running in a service out of service state.Please refer to the “Overview” for the impact of this vulnerability. Successful attacks may grant local access to adversaries with user 'lp' and group 'sys' privileges. It is significantly easier for attackers to obtain superuser privileges once local access has been obtained. Depending on system configuration, other privileges may be gained. The system is based on the Internet Printing Protocol (IPP) and provides most PostScript and raster printer services. The http component contains the cgi-bin/var.c file, which has the following variables: var = form_vars + form_count; var->name = strdup(name); var->nvalues = element + 1; var->avalues = element + 1 ; var->values = calloc(element + 1, sizeof(char *)); var->values[element] = strdup(value); Since the attacker can control the element and value, the stack address of the calling function can be overwritten instead execute arbitrary commands
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200212-0649",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "cups",
"scope": "eq",
"trust": 1.6,
"vendor": "easy products",
"version": "1.1.10"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.1"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.4"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.0.4"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.14"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.4_2"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2.2"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.6"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.0,
"vendor": "apple",
"version": "10.2"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.17"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.13"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.0.4_8"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.4_5"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.4_3"
},
{
"model": "cups",
"scope": "eq",
"trust": 1.0,
"vendor": "easy products",
"version": "1.1.7"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.8,
"vendor": "red hat",
"version": "7.3"
},
{
"model": "linux",
"scope": "eq",
"trust": 0.8,
"vendor": "red hat",
"version": "8.0"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.17"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.16"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.15"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.14"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.13"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.12"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.10"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.7"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.6"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.6,
"vendor": "apple",
"version": "x10.2.2"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.6,
"vendor": "apple",
"version": "x10.2"
},
{
"model": "software products cups",
"scope": "ne",
"trust": 0.6,
"vendor": "easy",
"version": "1.1.18"
},
{
"model": "mac os",
"scope": "ne",
"trust": 0.6,
"vendor": "apple",
"version": "x10.2.3"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.4-5"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.4-3"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.4-2"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.1"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.0.4-8"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.0.4"
},
{
"model": "software products cups",
"scope": "eq",
"trust": 0.3,
"vendor": "easy",
"version": "1.1.18"
}
],
"sources": [
{
"db": "BID",
"id": "6433"
},
{
"db": "BID",
"id": "6434"
},
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2002-1383"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Discovered by zen-parse.",
"sources": [
{
"db": "BID",
"id": "6433"
},
{
"db": "BID",
"id": "6434"
}
],
"trust": 0.6
},
"cve": "CVE-2002-1383",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": true,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 10.0,
"confidentialityImpact": "Complete",
"exploitabilityScore": null,
"id": "CVE-2002-1383",
"impactScore": null,
"integrityImpact": "Complete",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "VHN-5768",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2002-1383",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-200212-075",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-5768",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-5768"
},
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ Common Unix Printing System (CUPS) Some UNIX Included in the UNIX Can be used universally in the environment Internet Printing Protocol version 1.1 (IPP/1.1) Is a printing system that supports Red Hat Linux 7.3 as well as 8.0 It is also bundled with. this CUPS Has the following security issues: still, Red Hat Linux Then CUPS Is disabled in the default installation. 1. Overflow due to overflow of integer digits * [CAN-2002-1383] CUPS There are a few problems with overflowing integer digits. 2. Resource race condition for temporary file generation processing (race condition) Problem * [CAN-2002-1366] CUPS Is /etc/cups/certs/ less than pid ( Generation time CUPS Process ID) Creates a temporary file with a file name of, so a local attacker can predict how the temporary file name is determined. Therefore, by creating a file with the same name as the temporary file that points to the intended file, root Any file can be overwritten or created with authority. In order to execute this attack, 1. In advance, lp User rights are required. 3. Printer addition mechanism / Problems with the access control function * [CAN-2002-1367] Malicious maliciously created remotely UDP Packet CUPS By sending to, you can bypass the authentication and add a printer. Furthermore, there is a problem that the access control mechanism of the printer addition mechanism neglects the validity check. The added printer information is root Since it is interpreted by the authority, any print can be added by using these problems together. As a result, local attackers root Elevation to privilege is possible. 4. Intentionally created HTTP By communication CUPSd That crashes [CAN-2002-1368] CUPS Then IPP To accept connections on the backend HTTP server (CUPSd) Is included. this HTTP Server HTTP The remote attacker is not able to verify the validity of the range of received values in the handling part of Contents-Length: The field was set to a negative value, or intentionally assembled and chunked HTTP By trying to communicate with the protocol, CUPS Can be put into a denial of service. To restore normal operation CUPSd Needs to be restarted. 5. strncat Problem of buffer overflow caused by function [CAN-2002-1369] CUPS Has a buffer overflow problem when receiving a printer job with a specific attribute value. By using this issue, a remote attacker can root It is possible to execute arbitrary code with authority. To take advantage of this issue, 3. Need to take advantage of the problem. 6.GIF Problems when handling file formats [CAN-2002-1371] CUPS In GIF Width in the part that handles format files (width) There is a problem with the process of validating the value of. For this reason, remote attackers are deliberately assembled (width) But \u00270\u0027 Is GIF Overwrite the allocated memory contents by interpreting the format file, CUPS An arbitrary code may be executed with the execution right. 7. File descriptor issues with sockets and files * [CAN-2002-1372] CUPS Has a problem that does not properly close file descriptors for sockets and files. For this reason, local attackers can use this issue to cause memory leaks, CUPS It is possible to put the entire system running in a service out of service state.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. Successful attacks may grant local access to adversaries with user \u0027lp\u0027 and group \u0027sys\u0027 privileges. It is significantly easier for attackers to obtain superuser privileges once local access has been obtained. Depending on system configuration, other privileges may be gained. The system is based on the Internet Printing Protocol (IPP) and provides most PostScript and raster printer services. The http component contains the cgi-bin/var.c file, which has the following variables: var = form_vars + form_count; var-\u003ename = strdup(name); var-\u003envalues \u200b\u200b= element + 1; var-\u003eavalues \u200b\u200b= element + 1 ; var-\u003evalues \u200b\u200b= calloc(element + 1, sizeof(char *)); var-\u003evalues[element] = strdup(value); Since the attacker can control the element and value, the stack address of the calling function can be overwritten instead execute arbitrary commands",
"sources": [
{
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"db": "BID",
"id": "6433"
},
{
"db": "BID",
"id": "6434"
},
{
"db": "VULHUB",
"id": "VHN-5768"
}
],
"trust": 2.25
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2002-1383",
"trust": 3.1
},
{
"db": "SECUNIA",
"id": "7858",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "7756",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "9325",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "7913",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "7803",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "7843",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "7907",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "7794",
"trust": 1.7
},
{
"db": "SECUNIA",
"id": "8080",
"trust": 1.7
},
{
"db": "BID",
"id": "6434",
"trust": 1.2
},
{
"db": "BID",
"id": "6433",
"trust": 1.2
},
{
"db": "BID",
"id": "6435",
"trust": 0.8
},
{
"db": "BID",
"id": "6437",
"trust": 0.8
},
{
"db": "BID",
"id": "6439",
"trust": 0.8
},
{
"db": "BID",
"id": "6440",
"trust": 0.8
},
{
"db": "BID",
"id": "6436",
"trust": 0.8
},
{
"db": "BID",
"id": "6438",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2002-000336",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-200212-075",
"trust": 0.7
},
{
"db": "SUSE",
"id": "SUSE-SA:2003:002",
"trust": 0.6
},
{
"db": "VULNWATCH",
"id": "20021219 IDEFENSE SECURITY ADVISORY 12.19.02: MULTIPLE SECURITY VULNERABILITIES IN COMMON UNIX PRINTING SYSTEM (CUPS)",
"trust": 0.6
},
{
"db": "CALDERA",
"id": "CSSA-2003-004.0",
"trust": 0.6
},
{
"db": "BUGTRAQ",
"id": "20021219 IDEFENSE SECURITY ADVISORY 12.19.02: MULTIPLE SECURITY VULNERABILITIES IN COMMON UNIX PRINTING SYSTEM (CUPS)",
"trust": 0.6
},
{
"db": "REDHAT",
"id": "RHSA-2002:295",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-5768",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-5768"
},
{
"db": "BID",
"id": "6433"
},
{
"db": "BID",
"id": "6434"
},
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
]
},
"id": "VAR-200212-0649",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-5768"
}
],
"trust": 0.01
},
"last_update_date": "2023-12-18T12:33:09.073000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "RHSA-2002:295",
"trust": 0.8,
"url": "https://rhn.redhat.com/errata/rhsa-2002-295.html"
},
{
"title": "RHSA-2002:295",
"trust": 0.8,
"url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2002-295j.html"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2002-1383"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.7,
"url": "ftp://ftp.sco.com/pub/security/openlinux/cssa-2003-004.0.txt"
},
{
"trust": 1.7,
"url": "http://www.idefense.com/advisory/12.19.02.txt"
},
{
"trust": 1.7,
"url": "http://www.redhat.com/support/errata/rhsa-2002-295.html"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/7756/"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/7794"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/7803"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/7843"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/7858"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/7907"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/7913/"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/8080/"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/9325/"
},
{
"trust": 1.7,
"url": "http://www.novell.com/linux/security/advisories/2003_002_cups.html"
},
{
"trust": 1.7,
"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=104032149026670\u0026w=2"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2002-1383"
},
{
"trust": 0.8,
"url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2002-1383"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6435"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6436"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6438"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6440"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6439"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6437"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6434"
},
{
"trust": 0.8,
"url": "http://www.securityfocus.com/bid/6433"
},
{
"trust": 0.6,
"url": "http://www.info.apple.com/usen/security/security_updates.html"
},
{
"trust": 0.6,
"url": "/archive/1/304031"
},
{
"trust": 0.6,
"url": "http://marc.theaimsgroup.com/?l=bugtraq\u0026m=104032149026670\u0026w=2"
},
{
"trust": 0.1,
"url": "http://marc.info/?l=bugtraq\u0026amp;m=104032149026670\u0026amp;w=2"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-5768"
},
{
"db": "BID",
"id": "6433"
},
{
"db": "BID",
"id": "6434"
},
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-5768"
},
{
"db": "BID",
"id": "6433"
},
{
"db": "BID",
"id": "6434"
},
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2002-12-26T00:00:00",
"db": "VULHUB",
"id": "VHN-5768"
},
{
"date": "2002-12-19T00:00:00",
"db": "BID",
"id": "6433"
},
{
"date": "2002-12-19T00:00:00",
"db": "BID",
"id": "6434"
},
{
"date": "2007-04-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"date": "2002-12-26T05:00:00",
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"date": "2002-12-26T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-10-18T00:00:00",
"db": "VULHUB",
"id": "VHN-5768"
},
{
"date": "2009-07-11T19:16:00",
"db": "BID",
"id": "6433"
},
{
"date": "2009-07-11T19:16:00",
"db": "BID",
"id": "6434"
},
{
"date": "2007-04-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2002-000336"
},
{
"date": "2016-10-18T02:26:37.023000",
"db": "NVD",
"id": "CVE-2002-1383"
},
{
"date": "2005-10-20T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "CUPS Multiple integer overflow vulnerabilities",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2002-000336"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Boundary Condition Error",
"sources": [
{
"db": "BID",
"id": "6433"
},
{
"db": "BID",
"id": "6434"
},
{
"db": "CNNVD",
"id": "CNNVD-200212-075"
}
],
"trust": 1.2
}
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…