Описание
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.4.4-1 |
| hardy | DNE | |
| jaunty | released | 1.3.9-17ubuntu3.9 |
| karmic | released | 1.4.1-5ubuntu2.6 |
| lucid | released | 1.4.3-1ubuntu1.2 |
| upstream | released | 1.4.4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.2.2-0ubuntu0.6.06.19 |
| devel | DNE | |
| hardy | released | 1.3.7-1ubuntu3.11 |
| jaunty | DNE | |
| karmic | DNE | |
| lucid | DNE | |
| upstream | released | 1.4.4 |
Показывать по
Ссылки на источники
EPSS
2.6 Low
CVSS2
Связанные уязвимости
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file.
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file.
The cupsFileOpen function in CUPS before 1.4.4 allows local users, wit ...
The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp group membership, to overwrite arbitrary files via a symlink attack on the (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file.
EPSS
2.6 Low
CVSS2