CVE-2012-5519

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface.

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692791

http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00003.html

http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00006.html

http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00010.html

http://rhn.redhat.com/errata/RHSA-2013-0580.html

http://support.apple.com/kb/HT5784

http://www.openwall.com/lists/oss-security/2012/11/10/5

http://www.openwall.com/lists/oss-security/2012/11/11/2

http://www.openwall.com/lists/oss-security/2012/11/11/5

http://www.securityfocus.com/bid/56494

http://www.ubuntu.com/usn/USN-1654-1

https://exchange.xforce.ibmcloud.com/vulnerabilities/80012

Details

Source: MITRE

Published: 2012-11-20

Updated: 2017-08-29

Type: CWE-264

Risk Information

CVSS v2

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (21 total)

IDNameProductFamilySeverity
119966SUSE SLES12 Security Update : cups154 (SUSE-SU-2015:1044-2)NessusSuSE Local Security Checks
critical
119965SUSE SLES12 Security Update : cups154 (SUSE-SU-2015:1044-1)NessusSuSE Local Security Checks
critical
84184openSUSE Security Update : cups (openSUSE-2015-418)NessusSuSE Local Security Checks
critical
84145SUSE SLED12 / SLES12 Security Update : cups (SUSE-SU-2015:1041-1)NessusSuSE Local Security Checks
critical
79550OracleVM 3.3 : cups (OVMSA-2014-0035)NessusOracleVM Local Security Checks
high
73390GLSA-201404-01 : CUPS: Arbitrary file read/writeNessusGentoo Local Security Checks
high
70842SuSE 11.2 / 11.3 Security Update : CUPS (SAT Patch Numbers 8436 / 8437)NessusSuSE Local Security Checks
high
69729Amazon Linux AMI : cups (ALAS-2013-170)NessusAmazon Linux Local Security Checks
high
68766Oracle Linux 5 / 6 : cups (ELSA-2013-0580)NessusOracle Linux Local Security Checks
high
801016Mac OS X 10.8 < 10.8.4 Multiple Vulnerabilities (Security Update 2013-002)Log Correlation EngineOperating System Detection
high
6857Mac OS X 10.8 < 10.8.4 Multiple Vulnerabilities (Security Update 2013-002)Nessus Network MonitorWeb Clients
critical
66808Mac OS X 10.8.x < 10.8.4 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
high
65970CUPS < 1.6.2 Multiple VulnerabilitiesNessusMisc.
high
65031CentOS 5 / 6 : cups (CESA-2013:0580)NessusCentOS Local Security Checks
high
64963Scientific Linux Security Update : cups on SL5.x, SL6.x i386/x86_64 (20130228)NessusScientific Linux Local Security Checks
high
64944RHEL 5 / 6 : cups (RHSA-2013:0580)NessusRed Hat Local Security Checks
high
64882Fedora 17 : cups-1.5.4-18.fc17 (2012-19606)NessusFedora Local Security Checks
high
63482Fedora 18 : cups-1.5.4-20.fc18 (2012-19301)NessusFedora Local Security Checks
high
63385Debian DSA-2600-1 : cups - privilege escalationNessusDebian Local Security Checks
high
63257Mandriva Linux Security Advisory : cups (MDVSA-2012:179)NessusMandriva Local Security Checks
high
63163Ubuntu 8.04 LTS / 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : cups, cupsys vulnerability (USN-1654-1)NessusUbuntu Local Security Checks
high