Ubuntu Security Notice (C) 2014 Canonical, Inc. / NASL script (C) 2014 Tenable Network Security, Inc.
The remote Ubuntu host is missing a security-related patch.
Alex Korobkin discovered that the CUPS web interface incorrectly
protected against cross-site scripting (XSS) attacks. If an
authenticated user were tricked into visiting a malicious website
while logged into CUPS, a remote attacker could modify the CUPS
configuration and possibly steal confidential data.
Update the affected cups package.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : true