Vendor CVEs
Openprinting
All CVEs
110 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2004-1269 | 0.00 | — | 0.09 | Jan 10, 2005 | lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail. | |||
| CVE-2003-0788 | 0.00 | — | 0.02 | Dec 1, 2003 | Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631). | |||
| CVE-2002-1384 | 0.00 | — | 0.01 | Jan 2, 2003 | Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. | |||
| CVE-2002-1371 | 0.00 | — | 0.05 | Dec 26, 2002 | filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif. | |||
| CVE-2002-1366 | 0.00 | — | 0.00 | Dec 26, 2002 | Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream. | |||
| CVE-2002-1367 | 0.00 | — | 0.04 | Dec 26, 2002 | Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server… | |||
| CVE-2002-0063 | 0.00 | — | 0.04 | Mar 8, 2002 | Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values. | |||
| CVE-2001-1332 | 0.00 | — | 0.04 | May 10, 2001 | Buffer overflows in Linux CUPS before 1.1.6 may allow remote attackers to execute arbitrary code. | |||
| CVE-2001-0194 | 0.00 | — | 0.04 | May 3, 2001 | Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line. | |||
| CVE-2000-0510 | 0.00 | — | 0.02 | Jun 21, 2000 | CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a malformed IPP request. |
- CVE-2004-1269Jan 10, 2005risk 0.00cvss —epss 0.09
lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.
- CVE-2003-0788Dec 1, 2003risk 0.00cvss —epss 0.02
Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631).
- CVE-2002-1384Jan 2, 2003risk 0.00cvss —epss 0.01
Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.
- CVE-2002-1371Dec 26, 2002risk 0.00cvss —epss 0.05
filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif.
- CVE-2002-1366Dec 26, 2002risk 0.00cvss —epss 0.00
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.
- CVE-2002-1367Dec 26, 2002risk 0.00cvss —epss 0.04
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server…
- CVE-2002-0063Mar 8, 2002risk 0.00cvss —epss 0.04
Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values.
- CVE-2001-1332May 10, 2001risk 0.00cvss —epss 0.04
Buffer overflows in Linux CUPS before 1.1.6 may allow remote attackers to execute arbitrary code.
- CVE-2001-0194May 3, 2001risk 0.00cvss —epss 0.04
Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line.
- CVE-2000-0510Jun 21, 2000risk 0.00cvss —epss 0.02
CUPS (Common Unix Printing System) 1.04 and earlier allows remote attackers to cause a denial of service via a malformed IPP request.
Page 3 of 3