Summary
This host is running CUPS and is prone to Denial of Service vulnerability.
Impact
Successful exploitation will let the remote unauthenticated attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.
Impact Level: Application
Solution
Upgrade to 1.4.5 or above,
For updates refer to http://www.cups.org/software.php
Insight
The flaw is caused by improper allocation of memory for attribute values with invalid string data type.
Affected
CUPS 1.4.4 and prior
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2010-2941 -
CVSS Base Score: 7.9
AV:A/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Apple QuickTime Multiple Denial Of Service Vulnerabilities (Win)
- Avaya IP Office Manager TFTP Denial of Service Vulnerability
- Epson EventManager 'x-protocol-version' Denial of Service Vulnerability
- Apache 'mod_proxy_http.c' Denial Of Service Vulnerability
- GoodTech SSH Server SFTP Multiple BOF Vulnerabilities