Mandrake Linux Security Advisory : cups (MDKSA-2003:104)

medium Nessus Plugin ID 14086

Synopsis

The remote Mandrake Linux host is missing one or more security updates.

Description

A bug in versions of CUPS prior to 1.1.19 was reported by Paul Mitcheson in the Internet Printing Protocol (IPP) implementation would result in CUPS going into a busy loop, which could result in a Denial of Service (DoS) condition. To be able to exploit this problem, an attacker would need to be able to make a TCP connection to the IPP port (port 631 by default).

The provided packages have been patched to correct this problem.

Solution

Update the affected packages.

Plugin Details

Severity: Medium

ID: 14086

File Name: mandrake_MDKSA-2003-104.nasl

Version: 1.21

Type: local

Family: Mandriva Local Security Checks

Published: 7/31/2004

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:cups, p-cpe:/a:mandriva:linux:cups-common, p-cpe:/a:mandriva:linux:cups-serial, p-cpe:/a:mandriva:linux:libcups1, p-cpe:/a:mandriva:linux:libcups1-devel, cpe:/o:mandrakesoft:mandrake_linux:9.0

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 11/5/2003

Reference Information

CVE: CVE-2003-0788

BID: 8952

MDKSA: 2003:104

Detections

Analytics