Denial of Service : CUPS < 1.4.0 Multiple DoS Vulnerabilities (Jun 2009)

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.800584
Category:	Denial of Service
Title:	CUPS < 1.4.0 Multiple DoS Vulnerabilities (Jun 2009)
Summary:	CUPS (Common UNIX Printing System) service is prone to multiple; denial of service (DoS) vulnerabilities.
Description:	Summary: CUPS (Common UNIX Printing System) service is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: The following vulnerabilities exist: - CVE-2009-1196: A use after free error within the directory services functionality in the scheduler. - CVE-2009-0791: Integer overflow errors within the 'pdftops' filter while processing specially crafted PDF file. Vulnerability Impact: Successful exploitation allows remote attackers to execute arbitrary code and can cause denial of service. Affected Software/OS: CUPS versions prior to 1.4.0. Solution: Update to version 1.4.0 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1196 1022327 http://securitytracker.com/id?1022327 35194 http://www.securityfocus.com/bid/35194 35340 http://secunia.com/advisories/35340 ADV-2009-1488 http://www.vupen.com/english/advisories/2009/1488 RHSA-2009:1083 http://www.redhat.com/support/errata/RHSA-2009-1083.html cups-directory-services-dos(50944) https://exchange.xforce.ibmcloud.com/vulnerabilities/50944 https://bugzilla.redhat.com/show_bug.cgi?id=497135 oval:org.mitre.oval:def:11217 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11217 Common Vulnerability Exposure (CVE) ID: CVE-2009-0791 1022326 http://securitytracker.com/id?1022326 35195 http://www.securityfocus.com/bid/35195 35685 http://secunia.com/advisories/35685 37023 http://secunia.com/advisories/37023 37028 http://secunia.com/advisories/37028 37037 http://secunia.com/advisories/37037 37043 http://secunia.com/advisories/37043 37077 http://secunia.com/advisories/37077 37079 http://secunia.com/advisories/37079 ADV-2009-2928 http://www.vupen.com/english/advisories/2009/2928 MDVSA-2009:334 http://www.mandriva.com/security/advisories?name=MDVSA-2009:334 RHSA-2009:1500 https://rhn.redhat.com/errata/RHSA-2009-1500.html RHSA-2009:1501 https://rhn.redhat.com/errata/RHSA-2009-1501.html RHSA-2009:1502 https://rhn.redhat.com/errata/RHSA-2009-1502.html RHSA-2009:1503 https://rhn.redhat.com/errata/RHSA-2009-1503.html RHSA-2009:1512 https://rhn.redhat.com/errata/RHSA-2009-1512.html SUSE-SR:2009:012 http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html cups-pdftops-filter-bo(50941) https://exchange.xforce.ibmcloud.com/vulnerabilities/50941 https://bugzilla.redhat.com/show_bug.cgi?id=491840 oval:org.mitre.oval:def:10534 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10534
Copyright	Copyright (C) 2009 Greenbone AG