CVE-2004-1267

Current Description

Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file.

Basic Data

PublishedJanuary 10, 2005
Last ModifiedOctober 03, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-119
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score6.5
SeverityMEDIUM
Exploitability Score8.0
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegetrue
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationEasy Software ProductsCups1.0.4*******
    2.3ApplicationEasy Software ProductsCups1.0.4_8*******
    2.3ApplicationEasy Software ProductsCups1.1.1*******
    2.3ApplicationEasy Software ProductsCups1.1.4*******
    2.3ApplicationEasy Software ProductsCups1.1.4_2*******
    2.3ApplicationEasy Software ProductsCups1.1.4_3*******
    2.3ApplicationEasy Software ProductsCups1.1.4_5*******
    2.3ApplicationEasy Software ProductsCups1.1.6*******
    2.3ApplicationEasy Software ProductsCups1.1.7*******
    2.3ApplicationEasy Software ProductsCups1.1.10*******
    2.3ApplicationEasy Software ProductsCups1.1.12*******
    2.3ApplicationEasy Software ProductsCups1.1.13*******
    2.3ApplicationEasy Software ProductsCups1.1.14*******
    2.3ApplicationEasy Software ProductsCups1.1.15*******
    2.3ApplicationEasy Software ProductsCups1.1.16*******
    2.3ApplicationEasy Software ProductsCups1.1.17*******
    2.3ApplicationEasy Software ProductsCups1.1.18*******
    2.3ApplicationEasy Software ProductsCups1.1.19*******
    2.3ApplicationEasy Software ProductsCups1.1.19_rc5*******
    2.3ApplicationEasy Software ProductsCups1.1.20*******
    2.3ApplicationEasy Software ProductsCups1.1.21*******
    2.3ApplicationEasy Software ProductsCups1.1.22_rc1*******
  • OR - Configuration 2
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSRedhatFedora Corecore_2.0*******
    2.3OSRedhatFedora Corecore_3.0*******

Vulnerable Software List

VendorProductVersions
Easy Software Products Cups 1.0.4, 1.0.4_8, 1.1.1, 1.1.10, 1.1.12, 1.1.13, 1.1.14, 1.1.15, 1.1.16, 1.1.17, 1.1.18, 1.1.19, 1.1.19_rc5, 1.1.20, 1.1.21, 1.1.22_rc1, 1.1.4, 1.1.4_2, 1.1.4_3, 1.1.4_5, 1.1.6, 1.1.7
Redhat Fedora Core core_2.0, core_3.0

References

NameSourceURLTags
http://tigger.uic.edu/~jlongs2/holes/cups.txthttp://tigger.uic.edu/~jlongs2/holes/cups.txtMISCExploit Vendor Advisory
GLSA-200412-25http://www.gentoo.org/security/en/glsa/glsa-200412-25.xmlGENTOO
MDKSA-2005:008http://www.mandriva.com/security/advisories?name=MDKSA-2005:008MANDRAKE
RHSA-2005:013http://www.redhat.com/support/errata/RHSA-2005-013.htmlREDHAT
RHSA-2005:053http://www.redhat.com/support/errata/RHSA-2005-053.htmlREDHAT
cups-parsecommand-hpgl-bo(18604)https://exchange.xforce.ibmcloud.com/vulnerabilities/18604XF
oval:org.mitre.oval:def:10620https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10620OVAL
USN-50-1https://usn.ubuntu.com/50-1/UBUNTU