Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Cups
(Easy_software_products)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 35 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2005-01-10 | CVE-2004-1125 | Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PDF file that causes the boundaries of a maskColors array to be exceeded. | Cups, Kde, Xpdf | N/A | ||
| 2005-01-27 | CVE-2004-0927 | ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions. | Mac_os_x, Mac_os_x_server, Cups | N/A | ||
| 2005-01-27 | CVE-2004-0926 | Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image. | Mac_os_x, Mac_os_x_server, Cups | N/A | ||
| 2005-01-27 | CVE-2004-0924 | NetInfo Manager on Mac OS X 10.3.x through 10.3.5, after an initial root login, reports the root account as being disabled, even when it has not. | Mac_os_x, Mac_os_x_server, Cups | N/A | ||
| 2005-01-27 | CVE-2004-0923 | CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords. | Mac_os_x, Mac_os_x_server, Cups | N/A | ||
| 2005-01-27 | CVE-2004-0889 | Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888. | Debian_linux, Cups, Linux, Gpdf, Kde, Koffice, Kpdf, Pdftohtml, Enterprise_linux, Enterprise_linux_desktop, Fedora_core, Linux_advanced_workstation, Suse_linux, Tetex, Ubuntu_linux, Xpdf | N/A | ||
| 2005-01-27 | CVE-2004-0888 | Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889. | Debian_linux, Cups, Linux, Gpdf, Kde, Koffice, Kpdf, Pdftohtml, Enterprise_linux, Enterprise_linux_desktop, Fedora_core, Linux_advanced_workstation, Suse_linux, Tetex, Ubuntu_linux, Xpdf | N/A | ||
| 2004-09-28 | CVE-2004-0558 | The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port. | Cups | N/A | ||
| 2003-12-01 | CVE-2003-0788 | Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS before 1.1.19 allows remote attackers to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631). | Cups | N/A | ||
| 2003-01-02 | CVE-2002-1384 | Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. | Cups, Xpdf | N/A |