This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.
The remote printer service is prone to a denial of service attack.
The version of CUPS installed on the remote host suffers from a design
flaw involving SSL auto-detection. By establishing a connection to a
port on which the application attempts to auto-detect SSL and sending
a single character, an unauthenticated, remote attacker can leverage
this flaw to cause subsequent connections to hang until the first
connection is closed.
See also :
Upgrade to CUPS version 1.2.7 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.1
Public Exploit Available : true
Nessus Plugin ID: 24901 (cups_ssl_negotiation_dos.nasl)
Bugtraq ID: 23127
CVE ID: CVE-2007-0720
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.