Filtered by vendor Easy Software Products
Subscribe
Total
35 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0788 | 1 Easy Software Products | 1 Cups | 2024-11-20 | 5.0 MEDIUM | N/A |
Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631). | |||||
CVE-2002-1384 | 2 Easy Software Products, Xpdf | 2 Cups, Xpdf | 2024-11-20 | 7.2 HIGH | N/A |
Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. | |||||
CVE-2002-1383 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2024-11-20 | 10.0 HIGH | N/A |
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonstrated by mksun. | |||||
CVE-2002-1371 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2024-11-20 | 7.5 HIGH | N/A |
filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif. | |||||
CVE-2002-1369 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2024-11-20 | 10.0 HIGH | N/A |
jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitrary code via a buffer overflow attack. | |||||
CVE-2002-1368 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2024-11-20 | 7.5 HIGH | N/A |
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding. | |||||
CVE-2002-1367 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2024-11-20 | 10.0 HIGH | N/A |
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activities such as stealing the local root certificate for the administration server via a "need authorization" page, as demonstrated by new-coke. | |||||
CVE-2002-1366 | 2 Apple, Easy Software Products | 2 Mac Os X, Cups | 2024-11-20 | 6.2 MEDIUM | N/A |
Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream. | |||||
CVE-2002-0063 | 1 Easy Software Products | 1 Cups | 2024-11-20 | 7.5 HIGH | N/A |
Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values. | |||||
CVE-2001-1333 | 1 Easy Software Products | 1 Cups | 2024-11-20 | 1.2 LOW | N/A |
Linux CUPS before 1.1.6 does not securely handle temporary files, possibly due to a symlink vulnerability that could allow local users to overwrite files. | |||||
CVE-2001-1332 | 1 Easy Software Products | 1 Cups | 2024-11-20 | 7.5 HIGH | N/A |
Buffer overflows in Linux CUPS before 1.1.6 may allow remote attackers to execute arbitrary code. | |||||
CVE-2001-0194 | 1 Easy Software Products | 1 Cups | 2024-11-20 | 10.0 HIGH | N/A |
Buffer overflow in httpGets function in CUPS 1.1.5 allows remote attackers to execute arbitrary commands via a long input line. | |||||
CVE-2008-1373 | 1 Easy Software Products | 1 Cups | 2024-02-04 | 5.8 MEDIUM | N/A |
Buffer overflow in the gif_read_lzw function in CUPS 1.3.6 allows remote attackers to have an unknown impact via a GIF file with a large code_size value, a similar issue to CVE-2006-4484. | |||||
CVE-2008-0596 | 2 Easy Software Products, Redhat | 3 Cups, Desktop, Enterprise Linux | 2024-02-04 | 5.0 MEDIUM | N/A |
Memory leak in CUPS before 1.1.22, and possibly other versions, allows remote attackers to cause a denial of service (memory consumption and daemon crash) via a large number of requests to add and remove shared printers. | |||||
CVE-2008-0597 | 2 Easy Software Products, Redhat | 3 Cups, Desktop, Enterprise Linux | 2024-02-04 | 5.0 MEDIUM | N/A |
Use-after-free vulnerability in CUPS before 1.1.22, and possibly other versions, allows remote attackers to cause a denial of service (crash) via crafted IPP packets. |