CVE-2007-5849
published 2007-12-19CVE-2007-5849: Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary…
critical9.3CVSS 3.1
AVNACMAuNCCICAC
EXPLOIT
Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | cups | >= 0 < 1.3.5-1 | 1.3.5-1 |
| apple | cups | >= 0 < 1.3.5-1 | 1.3.5-1 |
| apple | cups | >= 0 < 1.3.5-1 | 1.3.5-1 |
| apple | cups | >= 0 < 1.3.5-1 | 1.3.5-1 |
| debian | cups | < cups 1.3.5-1 (bookworm) | cups 1.3.5-1 (bookworm) |
| easy_software_products | cups | — | — |
| easy_software_products | cups | — | — |
| easy_software_products | cups | — | — |
| easy_software_products | cups | — | — |
| easy_software_products | cups | — | — |
CVSS provenance
nvd9.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL