The remote host is probably affected by the vulnerabilities described in CVE-2008-1722 CVE-2008-0047 Impact CVE-2008-0047: Heap-based buffer overflow in the cgiCompileSearch function in CUPS 1.3.5, and other versions including the version bundled with Apple Mac OS X 10.5.2, when printer sharing is enabled, allows remote attackers to execute arbitrary code via crafted search expressions. CVE-2008-1722 Multiple integer overflows in (1) filter/image-png.c and (2) filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denial of service (crash) and trigger memory corruption, as demonstrated via a crafted PNG image.

All Cups users should upgrade to the latest version:

• http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0047
• http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1722

---

Updated on 2015-03-25