Unrated severityNVD Advisory· Published Jul 29, 2014· Updated May 6, 2026
CVE-2014-5030
CVE-2014-5030
Description
CUPS before 2.0 allows local users to read arbitrary files via a symlink attack on (1) index.html, (2) index.class, (3) index.pl, (4) index.php, (5) index.pyc, or (6) index.py.
Affected products
10cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*range: <=1.7.4
- cpe:2.3:a:apple:cups:1.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:cups:1.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:cups:1.7.1:b1:*:*:*:*:*:*
- cpe:2.3:a:apple:cups:1.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:cups:1.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:apple:cups:1.7:rc1:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- cups.org/str.phpnvdPatchVendor Advisory
- advisories.mageia.org/MGASA-2014-0313.htmlnvd
- rhn.redhat.com/errata/RHSA-2014-1388.htmlnvd
- secunia.com/advisories/60509nvd
- secunia.com/advisories/60787nvd
- www.debian.org/security/2014/dsa-2990nvd
- www.mandriva.com/security/advisoriesnvd
- www.openwall.com/lists/oss-security/2014/07/22/13nvd
- www.openwall.com/lists/oss-security/2014/07/22/2nvd
- www.ubuntu.com/usn/USN-2341-1nvd
News mentions
0No linked articles in our index yet.