CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-0882

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1780%
EPSS Percentile17.10th
Published2008年2月21日
Last Modified2026年4月23日

Vulnerability Description

Double free vulnerability in the process_browse_data function in CUPS 1.3.5 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via crafted UDP Browse packets to the cupsd port (631/udp), related to an unspecified manipulation of a remote printer. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Cups

Cups

= 1.3.5

References & Advisories

🔗 http://docs.info.apple.com/article.html?artnum=307562
🔗 http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
🔗 http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00000.html
🔗 http://secunia.com/advisories/28994
🔗 http://secunia.com/advisories/29067
🔗 http://secunia.com/advisories/29120
🔗 http://secunia.com/advisories/29132
🔗 http://secunia.com/advisories/29251

相关漏洞威胁

CVE-2002-136710.0

Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a cert...

CVE-2001-019410.0

Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line.

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...

CVE-2002-138310.0

Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary...

CVE-2008-0882 Detail & Impact Analysis | CVSS 10.0 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space