CVE-2002-1368 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2002-1368
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2002-1368

Description: Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/10909 VULNWATCH http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html SUSE http://www.novell.com/linux/security/advisories/2003_002_cups.html SAID Secunia Advisory: SA7907 Secunia Advisory: SA7756 Secunia Advisory: SA7794 Secunia Advisory: SA7803 Secunia Advisory: SA7843 Secunia Advisory: SA7858 Secunia Advisory: SA7913 Secunia Advisory: SA8080 Secunia Advisory: SA9325 REDHAT http://www.redhat.com/support/errata/RHSA-2002-295.html MISC http://www.idefense.com/advisory/12.19.02.txt MANDRAKE http://www.mandriva.com/security/advisories?name=MDKSA-2003:001 DEBIAN http://www.debian.org/security/2003/dsa-232 CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000702 CALDERA BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=104032149026670&w=2 BID 6437

Return to the previous page.