Vulnerability Details CVE-2002-0063
Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.4%
CVSS Severity
CVSS v2 Score 7.5
References
- ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-008.0.txt
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000471
- http://lists2.suse.com/archive/suse-security-announce/2001-Mar/0000.html
- http://www.cups.org/relnotes.html
- http://www.debian.org/security/2002/dsa-110
- http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-015.php
- http://www.redhat.com/support/errata/RHSA-2002-032.html
- http://www.securityfocus.com/bid/4100
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8192
- ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-008.0.txt
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000471
- http://lists2.suse.com/archive/suse-security-announce/2001-Mar/0000.html
- http://www.cups.org/relnotes.html
- http://www.debian.org/security/2002/dsa-110
- http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-015.php
- http://www.redhat.com/support/errata/RHSA-2002-032.html
- http://www.securityfocus.com/bid/4100
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8192
Products affected by CVE-2002-0063
-
cpe:2.3:a:easy_software_products:cups:*