(Sun Issues Fix) CUPS Bug in HPGL Filter Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1022375 |
|
SecurityTracker URL: http://securitytracker.com/id/1022375
|
|
CVE Reference:
CVE-2008-3641
(Links to External Site)
|
Date: Jun 11 2009
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
A vulnerability was reported in CUPS. A remote user can execute arbitrary code on the target system.
A remote user can send specially crafted pen width and pen color opcodes to the CUPS service to execute arbitrary code on the target system. The code will run with 'lp' user privileges.
On Mac OS X, if Printer Sharing is not enabled, a local user may be able to obtain elevated privileges.
The vulnerability resides in the Hewlett-Packard Graphics Language (HPGL) filter.
Apple was notified on August 19, 2008. Other operating systems are also affected.
regenrecht reported this vulnerability via TippingPoint's Zero Day Initiative.
|
Impact:
A remote user can execute arbitrary code on the target system.
|
Solution:
Sun has issued a fix for OpenSolaris.
The Sun advisory is available at:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-261088-1
|
Vendor URL: support.apple.com/kb/HT3216 (Links to External Site)
|
Cause:
Boundary error
|
Underlying OS:
UNIX (Solaris - SunOS)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Thu, 11 Jun 2009 07:07:17 -0400
Subject: CUPS
|
http://sunsolve.sun.com/search/document.do?assetkey=1-66-261088-1
CVE-2008-3639 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3639
CVE-2008-3640 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3640
CVE-2008-3641 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3641
|
|
