Описание
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.0.66-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.0.52-0ubuntu1.4]] |
| lucid | DNE | |
| precise | not-affected | 1.0.18-0ubuntu0.2 |
| trusty | released | 1.0.52-0ubuntu1.4 |
| trusty/esm | DNE | trusty was released [1.0.52-0ubuntu1.4] |
| upstream | released | 1.0.61-5 |
| utopic | released | 1.0.61-0ubuntu2.1 |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
The remove_bad_chars function in utils/cups-browsed.c in cups-filters ...
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
7.5 High
CVSS2