CVE-2007-4351

Severity

99%

Complexity

99%

Confidentiality

165%

Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted (1) textWithLanguage or (2) nameWithLanguage Internet Printing Protocol (IPP) tag, leading to a stack-based buffer overflow.

Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted (1) textWithLanguage or (2) nameWithLanguage Internet Printing Protocol (IPP) tag, leading to a stack-based buffer overflow.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 17 years ago

2007-10-31 22:46:00

Last updated 6 years ago

2018-10-03 21:47:00

Affected Software

Cups

References

http://docs.info.apple.com/article.html?artnum=307179

APPLE-SA-2007-12-17

27233

Patch, Vendor Advisory

27410

27445

27447

27474

27494

27499

27540

27577

27604

27712

28136

30847

http://secunia.com/secunia_research/2007-76/advisory/

Vendor Advisory

GLSA-200711-16

SSA:2007-305-01

http://support.avaya.com/elmodocs2/security/ASA-2007-476.htm

20080625 Wide Area Application Services (WAAS) Common UNIX Printing System (CUPS) Vulnerability

http://www.cups.org/str.php?L2561

DSA-1407

VU#446897

US Government Resource

MDKSA-2007:204

SUSE-SA:2007:058

RHSA-2007:1020

RHSA-2007:1022

RHSA-2007:1023

26268

1018879

TA07-352A

US Government Resource

ADV-2007-3681

ADV-2007-4238

ADV-2008-1934

https://bugzilla.redhat.com/show_bug.cgi?id=361661

cups-ippreadio-bo(38190)

https://issues.rpath.com/browse/RPL-1875

oval:org.mitre.oval:def:10604

USN-539-1

FEDORA-2007-2715

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.