Описание
The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors.
The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-5031
- https://cups.org/str.php?L4455
- http://advisories.mageia.org/MGASA-2014-0313.html
- http://rhn.redhat.com/errata/RHSA-2014-1388.html
- http://secunia.com/advisories/60509
- http://secunia.com/advisories/60787
- http://www.debian.org/security/2014/dsa-2990
- http://www.mandriva.com/security/advisories?name=MDVSA-2015:108
- http://www.openwall.com/lists/oss-security/2014/07/22/13
- http://www.openwall.com/lists/oss-security/2014/07/22/2
- http://www.ubuntu.com/usn/USN-2341-1
EPSS
CVE ID
Связанные уязвимости
The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors.
The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors.
The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors.
The web interface in CUPS before 2.0 does not check that files have wo ...
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность защищаемой информации
EPSS