CVE-2008-3641

Severity

99%

Complexity

99%

Confidentiality

165%

The Hewlett-Packard Graphics Language (HPGL) filter in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via crafted pen width and pen color opcodes that overwrite arbitrary memory.

The Hewlett-Packard Graphics Language (HPGL) filter in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via crafted pen width and pen color opcodes that overwrite arbitrary memory.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Apple

First reported 16 years ago

2008-10-10 10:30:00

Last updated 6 years ago

2018-10-11 20:48:00

Affected Software

Apple CUPS 1.1

1.1

Apple CUPS 1.1.1

1.1.1

Apple CUPS 1.1.2

1.1.2

Apple CUPS 1.1.3

1.1.3

Apple CUPS 1.1.4

1.1.4

Apple CUPS 1.1.5

1.1.5

Apple CUPS 1.1.5-1

1.1.5-1

Apple CUPS 1.1.5-2

1.1.5-2

Apple CUPS 1.1.6

1.1.6

Apple CUPS 1.1.6-1

1.1.6-1

Apple CUPS 1.1.6-2

1.1.6-2

Apple CUPS 1.1.6-3

1.1.6-3

Apple CUPS 1.1.7

1.1.7

Apple CUPS 1.1.8

1.1.8

Apple CUPS 1.1.9

1.1.9

Apple CUPS 1.1.9-1

1.1.9-1

Apple CUPS 1.1.10

1.1.10

Apple CUPS 1.1.10-1

1.1.10-1

Apple CUPS 1.1.11

1.1.11

Apple CUPS 1.1.12

1.1.12

Apple CUPS 1.1.13

1.1.13

Apple CUPS 1.1.14

1.1.14

Apple CUPS 1.1.15

1.1.15

Apple CUPS 1.1.16

1.1.16

Apple CUPS 1.1.17

1.1.17

Apple CUPS 1.18

1.1.18

Apple CUPS 1.1.19

1.1.19

Apple CUPS 1.1.19 release candidate 1

1.1.19

Apple CUPS 1.1.19 release candidate 2

1.1.19

Apple CUPS 1.1.19 release candidate 3

1.1.19

Apple CUPS 1.1.19 release candidate 4

1.1.19

Apple CUPS 1.1.19 release candidate 5

1.1.19

Apple CUPS 1.1.20

1.1.20

Apple CUPS 1.1.20 release candidate 1

1.1.20

Apple CUPS 1.1.20 release candidate 2

1.1.20

Apple CUPS 1.1.20 release candidate 3

1.1.20

Apple CUPS 1.1.20 release candidate 4

1.1.20

Apple CUPS 1.1.20 release candidate 5

1.1.20

Apple CUPS 1.1.20 release candidate 6

1.1.20

Apple CUPS 1.1.21

1.1.21

Apple CUPS 1.1.21 release candidate 1

1.1.21

Apple CUPS 1.1.21 release candidate 2

1.1.21

Apple CUPS 1.1.22

1.1.22

Apple CUPS 1.1.22 release candidate 1

1.1.22

Apple CUPS 1.1.22 release candidate 2

1.1.22

Apple CUPS 1.1.23

1.1.23

Apple CUPS 1.1.23 release candidate 1

1.1.23

Apple CUPS 1.2 b1

1.2

Apple CUPS 1.2 b2

1.2

Apple CUPS 1.2 release candidate 1

1.2

Apple CUPS 1.2 release candidate 2

1.2

Apple CUPS 1.2 release candidate 3

1.2

Apple CUPS 1.2.0

1.2.0

Apple CUPS 1.2.1

1.2.1

Apple CUPS 1.2.2

1.2.2

Apple CUPS 1.2.3

1.2.3

Apple CUPS 1.2.4

1.2.4

Apple CUPS 1.2.5

1.2.5

Apple CUPS 1.2.6

1.2.6

Apple CUPS 1.2.7

1.2.7

Apple CUPS 1.2.8

1.2.8

Apple CUPS 1.2.9

1.2.9

Apple CUPS 1.2.10

1.2.10

Apple CUPS 1.2.11

1.2.11

Apple CUPS 1.2.12

1.2.12

Apple CUPS 1.3 b1

1.3

Apple CUPS 1.3 release candidate 1

1.3

Apple CUPS 1.3 release candidate 2

1.3

Apple CUPS 1.3.0

1.3.0

Apple CUPS 1.3.1

1.3.1

Apple CUPS 1.3.2

1.3.2

Apple CUPS 1.3.3

1.3.3

Apple CUPS 1.3.4

1.3.4

Apple CUPS 1.3.5

1.3.5

Apple CUPS 1.3.6

1.3.6

Apple CUPS 1.3.7

1.3.7

Apple Cups

References

APPLE-SA-2008-10-09

Vendor Advisory

SUSE-SR:2008:021

SUSE-SR:2009:002

32084

Vendor Advisory

32222

Vendor Advisory

32226

Vendor Advisory

32284

Vendor Advisory

32292

Vendor Advisory

32316

Vendor Advisory

32331

33085

33111

33568

261088

http://support.apple.com/kb/HT3216

Vendor Advisory

http://support.avaya.com/elmodocs2/security/ASA-2008-470.htm

http://www.cups.org/articles.php?L575

http://www.cups.org/str.php?L2911

Exploit

DSA-1656

GLSA-200812-11

MDVSA-2008:211

RHSA-2008:0937

20081010 ZDI-08-067: Apple CUPS 1.3.7 (HP-GL/2 filter) Remote Code Execution Vulnerability

31681

Patch

31688

1021031

ADV-2008-2780

ADV-2008-2782

ADV-2008-3401

ADV-2009-1568

http://www.zerodayinitiative.com/advisories/ZDI-08-067

cups-hpgl-code-execution(45779)

oval:org.mitre.oval:def:9666

USN-656-1

FEDORA-2008-8801

FEDORA-2008-8844

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.