Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-0949Use of Uninitialized Resource in Apple Cups

CWE-908Use of Uninitialized ResourceCWE-476NULL Pointer Dereference9 documents9 sources
Severity
7.5HIGHNVD
EPSS
20.6%
top 4.42%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
7
Apple CupsApple MAC OS XApple MAC OS X Server+4 more
Timeline
PublishedJun 9
Latest updateMay 2

Description

The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

NVDapple/cups< 1.3.10
Debianapple/cups< 1.3.10-1+3
NVDapple/mac_os_x10.0.010.4.11+1
NVDapple/mac_os_x_server10.0.010.4.11+1

Also affects: Debian Linux 4.0, 5.0, 6.0, Linux Enterprise 10.0, 9.0, Ubuntu Linux 6.06, 8.04, 8.10, 9.04

🔴Vulnerability Details

3
GHSA
GHSA-m37g-v637-95q3: The ippReadIO function in cups/ipp2022-05-02
CVEList
CVE-2009-0949: The ippReadIO function in cups/ipp2009-06-09
OSV
CVE-2009-0949: The ippReadIO function in cups/ipp2009-06-09

💥Exploits & PoCs

1
Exploit-DB
CUPS 1.3.9 - 'cups/ipp.c' Null Pointer Dereference Denial of Service2009-06-02

📋Vendor Advisories

3
Ubuntu
CUPS vulnerability2009-06-03
Red Hat
cups: IPP_TAG_UNSUPPORTED handling NULL pointer dereference DoS2009-06-02
Debian
CVE-2009-0949: cups - The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not pro...2009

💬Community

1
Bugzilla
CVE-2009-0949 cups: IPP_TAG_UNSUPPORTED handling NULL pointer dereference DoS2009-05-15
CVE-2009-0949 — Use of Uninitialized Resource in Apple | cvebase