CVE-2013-6891 - Improper Link Resolution Before File Access ('Link Following')

Severity

12%

Complexity

19%

Confidentiality

48%

lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read portions of arbitrary files via a modified HOME environment variable and a symlink attack involving .cups/client.conf.

lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read portions of arbitrary files via a modified HOME environment variable and a symlink attack involving .cups/client.conf.

CVSS 2.0 Base Score 1.2. CVSS Attack Vector: local. CVSS Attack Complexity: high. CVSS Vector: (AV:L/AC:H/Au:N/C:P/I:N/A:N).

Overview

First reported 11 years ago

2014-01-26 01:55:00

Last updated 10 years ago

2014-03-06 04:49:00

Affected Software

Apple CUPS 1.7 release candidate 1

1.7

Apple Cups

Apple CUPS 1.7 beta1

1.7.1

Canonical Ubuntu Linux 12.10

12.10

Canonical Ubuntu Linux 13.04

13.04

Canonical Ubuntu Linux 13.10

13.10

References

http://advisories.mageia.org/MGASA-2014-0021.html

56531

Vendor Advisory

http://www.cups.org/blog.php?L704

http://www.cups.org/str.php?L4319

Exploit, Patch

MDVSA-2014:015

USN-2082-1

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.