Ubuntu Security Notice (C) 2014 Canonical, Inc. / NASL script (C) 2014 Tenable Network Security, Inc.
The remote Ubuntu host is missing a security-related patch.
Sebastian Krahmer discovered that cups-browsed incorrectly filtered
remote printer names and strings. A remote attacker could use this
issue to possibly execute arbitrary commands. (CVE-2014-2707)
Johannes Meixner discovered that cups-browsed ignored invalid
BrowseAllow directives. This could cause it to accept browse packets
from all hosts, contrary to intended configuration.
Update the affected cups-browsed package.
Risk factor :
High / CVSS Base Score : 8.3
CVSS Temporal Score : 7.2
Public Exploit Available : true