CUPS Web Interface Multiple Vulnerabilities Network Vulnerability

Summary

CUPS Web Interface is prone to Multiple Vulnerabilities. 1. A remote information-disclosure vulnerability. This issue affects the CUPS web interface component. Remote attackers can exploit this issue to obtain sensitive information that may lead to further attacks. 2. A cross-site request-forgery vulnerability. Attackers can exploit this issue to perform certain administrative actions and gain unauthorized access to the affected application.

Solution

Updates are available. Please see the references for more information.

References

http://cups.org/articles.php?L596
http://www.apple.com/macosx/
https://www.securityfocus.com/bid/40897

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0540, CVE-2010-1748

CVSS	Base Score: 6.0 AV:N/AC:M/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat Default Accounts
Apache Tomcat servlet/JSP container default files
Apple iTunes Tutorials Window Security Bypass Vulnerability (Mac OS X)
Apple iTunes Insecure Permissions Privilege Escalation Vulnerability (Mac OS X)
Adobe Flash Player Unspecified Cross-Site Scripting Vulnerability June-2011 (Linux)

Take action and discover your vulnerabilities