CVE-2002-0063Improper Restriction of Operations within the Bounds of a Memory Buffer in Software Products Cups

5 documents5 sources
Severity
7.5HIGHNVD
EPSS
1.9%
top 16.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Easy Software Products Cups
Timeline
PublishedMar 8
Latest updateMay 3

Description

Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

Patches

Patch: www.debian.orgPatch: www.linux-mandrake.comPatch: www.debian.org

🔴Vulnerability Details

2
GHSA
GHSA-54hj-qc3g-3hvj: Buffer overflow in ippRead function of CUPS before 12022-05-03
CVEList
CVE-2002-0063: Buffer overflow in ippRead function of CUPS before 12002-06-25

📋Vendor Advisories

1
Red Hat
security flaw2002-02-13

💬Community

1
Bugzilla
CVE-2002-0063 security flaw2018-08-16
CVE-2002-0063 — Software Products Cups vulnerability | cvebase