CUPS Printer List Disclosure

medium Nessus Plugin ID 11754

Language:

Synopsis

The remote printer service is leaking information.

Description

The remote host is running CUPS (Common Unix Printing System).

It is possible to connect to this port and browse '/printers' to obtain the list of printers this host can access. A remote attacker could use this information to mount further attacks.

Solution

Filter incoming traffic to this port.

Plugin Details

Severity: Medium

ID: 11754

File Name: cups_browseable_printers_list.nasl

Version: Revision: 1.11

Type: remote

Family: Misc.

Published: 6/18/2003

Updated: 7/1/2013

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: cpe:/a:apple:cups

Required KB Items: www/cups

Detections

Analytics