CVE-2012-4510

Severity

57%

Complexity

86%

Confidentiality

81%

cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive files using CUPS resources.

cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive files using CUPS resources.

CVSS 2.0 Base Score 5.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:N).

Overview

Type

cups-pk-helper Project cups-pk-helper

First reported 12 years ago

2012-11-20 00:55:00

Last updated 11 years ago

2013-12-05 05:17:00

Affected Software

cups-pk-helper Project cups-pk-helper 0.0.1

0.0.1

cups-pk-helper Project cups-pk-helper 0.0.2

0.0.2

cups-pk-helper Project cups-pk-helper 0.0.3

0.0.3

cups-pk-helper Project cups-pk-helper 0.0.4

0.0.4

cups-pk-helper Project cups-pk-helper 0.1.0

0.1.0

cups-pk-helper Project cups-pk-helper 0.1.1

0.1.1

cups-pk-helper Project cups-pk-helper 0.1.2

0.1.2

cups-pk-helper Project cups-pk-helper 0.1.3

0.1.3

cups-pk-helper Project cups-pk-helper 0.2.0

0.2.0

cups-pk-helper Project cups-pk-helper 0.2.1

0.2.1

References

DSA-2562

MDVSA-2013:069

[oss-security] 20121012 Security flaw in cups-pk-helper (CVE-2012-4510)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.