CUPS Internet Printing Protocol (IPP) Implementation Empty UDP Datagram Remote DoS

This script is Copyright (C) 2004-2013 George A. Theall

Synopsis :

The remote print server is affected by a denial of service

Description :

The target is running a CUPS server that supports browsing of network
printers and that is vulnerable to a limited type of denial of service
attack. Specifically, the browsing feature can be disabled by sending
an empty UDP datagram to the CUPS server.

See also :

Solution :

Upgrade to CUPS 1.1.21rc2 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 15900 (cups_empty_udp_dos.nasl)

Bugtraq ID: 11183

CVE ID: CVE-2004-0558