CVE-2008-0047 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2008-0047
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-0047

Description: Heap-based buffer overflow in the cgiCompileSearch function in CUPS 1.3.5, and other versions including the version bundled with Apple Mac OS X 10.5.2, when printer sharing is enabled, allows remote attackers to execute arbitrary code via crafted search expressions.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-598-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00005.html ST 1019646 SAID Secunia Advisory: SA29431 Secunia Advisory: SA29448 Secunia Advisory: SA29420 Secunia Advisory: SA29485 Secunia Advisory: SA29634 Secunia Advisory: SA29573 Secunia Advisory: SA29603 Secunia Advisory: SA29655 Secunia Advisory: SA29750 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0192.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:081 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=674 GENTOO http://security.gentoo.org/glsa/glsa-200804-01.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1530 CONFIRM http://docs.info.apple.com/article.html?artnum=307562 CERT http://www.us-cert.gov/cas/techalerts/TA08-079A.html BID 28307 APPLE http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Return to the previous page.