Navigation
Search
|
Remote exploit of CUPS
Thursday September 26, 2024. 11:22 PM , from LWN.net
Security researcher Simone Margaritelli
has reported a new vulnerability in CUPS, the software that many Linux systems use to manage printers and print jobs. Margaritelli describes the impact of the attack by saying: A remote unauthenticated attacker can silently replace existing printers' (or install new ones) IPP urls with a malicious one, resulting in arbitrary command execution (on the computer) when a print job is started (from that computer). The vulnerability relies on a few related problems in CUPS libraries and utilities; versions before 2.0.1 or 2.1b1 (depending on the component) may be affected. Red Hat has released a security bulletin as well.
https://lwn.net/Articles/991929/
Related News |
25 sources
Current Date
Dec, Wed 18 - 14:08 CET
|