Vulnerability Details CVE-2013-6473
Multiple heap-based buffer overflows in the urftopdf filter in cups-filters 1.0.25 before 1.0.47 allow remote attackers to execute arbitrary code via a large (1) page or (2) line in a URF file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.068
EPSS Ranking 90.9%
CVSS Severity
CVSS v2 Score 6.8
References
- http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7175
- http://www.securityfocus.com/bid/66601
- http://www.ubuntu.com/usn/USN-2143-1
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741333
- https://bugzilla.redhat.com/show_bug.cgi?id=1027547
- http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7175
- http://www.securityfocus.com/bid/66601
- http://www.ubuntu.com/usn/USN-2143-1
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741333
- https://bugzilla.redhat.com/show_bug.cgi?id=1027547
Products affected by CVE-2013-6473
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.25
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.26
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.27
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.28
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.29
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.30
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.31
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.32
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.33
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.34
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.35
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.36
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.37
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.38
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.39
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.40
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.41
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.42
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.43
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.44
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.45
-
cpe:2.3:a:linuxfoundation:cups-filters:1.0.46
-
cpe:2.3:o:canonical:ubuntu_linux:13.10