CVE-2013-6476

Severity

44%

Complexity

34%

Confidentiality

106%

The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.

The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.

CVSS 2.0 Base Score 4.4. CVSS Attack Vector: local. CVSS Attack Complexity: medium. CVSS Vector: (AV:L/AC:M/Au:N/C:P/I:P/A:P).

Overview

First reported 11 years ago

2014-03-14 15:55:00

Last updated 11 years ago

2014-03-17 13:10:00

Affected Software

Canonical Ubuntu Linux 10.04 LTS

10.04

Canonical Ubuntu Linux 12.04 LTS (Long-Term Support)

12.04

Canonical Ubuntu Linux 12.10

12.10

Canonical Ubuntu Linux 13.10

13.10

Debian Linux

Fedora

linuxfoundation cups-filters 1.0

1.0

linuxfoundation cups-filters 1.0.1

1.0.1

linuxfoundation cups-filters 1.0.2

1.0.2

linuxfoundation cups-filters 1.0.3

1.0.3

linuxfoundation cups-filters 1.0.4

1.0.4

linuxfoundation cups-filters 1.0.5

1.0.5

linuxfoundation cups-filters 1.0.6

1.0.6

linuxfoundation cups-filters 1.0.7

1.0.7

linuxfoundation cups-filters 1.0.8

1.0.8

linuxfoundation cups-filters 1.0.9

1.0.9

linuxfoundation cups-filters 1.0.10

1.0.10

linuxfoundation cups-filters 1.0.11

1.0.11

linuxfoundation cups-filters 1.0.12

1.0.12

linuxfoundation cups-filters 1.0.13

1.0.13

linuxfoundation cups-filters 1.0.14

1.0.14

linuxfoundation cups-filters 1.0.15

1.0.15

linuxfoundation cups-filters 1.0.16

1.0.16

linuxfoundation cups-filters 1.0.17

1.0.17

linuxfoundation cups-filters 1.0.18

1.0.18

linuxfoundation cups-filters 1.0.19

1.0.19

linuxfoundation cups-filters 1.0.20

1.0.20

linuxfoundation cups-filters 1.0.21

1.0.21

linuxfoundation cups-filters 1.0.22

1.0.22

linuxfoundation cups-filters 1.0.23

1.0.23

linuxfoundation cups-filters 1.0.24

1.0.24

linuxfoundation cups-filters 1.0.25

1.0.25

linuxfoundation cups-filters 1.0.26

1.0.26

linuxfoundation cups-filters 1.0.27

1.0.27

linuxfoundation cups-filters 1.0.28

1.0.28

linuxfoundation cups-filters 1.0.29

1.0.29

linuxfoundation cups-filters 1.0.30

1.0.30

linuxfoundation cups-filters 1.0.31

1.0.31

linuxfoundation cups-filters 1.0.32

1.0.32

linuxfoundation cups-filters 1.0.33

1.0.33

linuxfoundation cups-filters 1.0.34

1.0.34

linuxfoundation cups-filters 1.0.35

1.0.35

linuxfoundation cups-filters 1.0.36

1.0.36

linuxfoundation cups-filters 1.0.37

1.0.37

linuxfoundation cups-filters 1.0.38

1.0.38

linuxfoundation cups-filters 1.0.39

1.0.39

linuxfoundation cups-filters 1.0.40

1.0.40

linuxfoundation cups-filters 1.0.41

1.0.41

linuxfoundation cups-filters 1.0.42

1.0.42

linuxfoundation cups-filters 1.0.43

1.0.43

linuxfoundation cups-filters 1.0.44

1.0.44

linuxfoundation cups-filters 1.0.45

1.0.45

References

http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176

Patch

DSA-2875

DSA-2876

USN-2143-1

USN-2144-1

https://bugzilla.redhat.com/show_bug.cgi?id=1027551

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.