CUPS Internet Printing Protocol (IPP) Implementation Empty UDP Datagram Remote DoS

This script is Copyright (C) 2004-2013 George A. Theall


Synopsis :

The remote print server is affected by a denial of service
vulnerability.

Description :

The target is running a CUPS server that supports browsing of network
printers and that is vulnerable to a limited type of denial of service
attack. Specifically, the browsing feature can be disabled by sending
an empty UDP datagram to the CUPS server.

See also :

http://www.cups.org/str.php?L863
ftp://ftp.sco.com/pub/openserver5/507/mp/osr507mp4/osr507mp4.htm
http://www.nessus.org/u?0ff4652a
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.15/SCOSA-2004.15.txt

Solution :

Upgrade to CUPS 1.1.21rc2 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.3
(CVSS2#E:H/RL:OF/RC:C)
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 15900 (cups_empty_udp_dos.nasl)

Bugtraq ID: 11183

CVE ID: CVE-2004-0558