Vulnerability in Linuxfoundation Cups-filters
CVE-2014-4338
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting brow…
EPSS: 0.004 (60.7th percentile) — read the EPSS interpretation.
Affected products
- Linuxfoundation Cups-filters
- N/a — versions n/a
Weakness classification (CWE)
References
- RHSA-2014:1795 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- 68124 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
- 62044 (Permissions Required, x_refsource_SECUNIA, third-party-advisory)
- [oss-security] 20140425 Re: Re: cups-browsed remote exploit (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
- [oss-security] 20140619 Re: cups-browsed remote exploit (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)