CVE-2014-4338
published 2014-06-22CVE-2014-4338: cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a…
PriorityP426medium4CVSS 2.0
AVNACHAuNCPIPAN
EPSS
3.01%
85.7th percentile
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all IP addresses.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | cups-filters | < cups-filters 1.0.53-1 (bookworm) | cups-filters 1.0.53-1 (bookworm) |
| linuxfoundation | cups-filters | <= 1.0.52 | — |
| linuxfoundation | cups-filters | >= 0 < 1.0.53-1 | 1.0.53-1 |
| linuxfoundation | cups-filters | >= 0 < 1.0.53-1 | 1.0.53-1 |
| linuxfoundation | cups-filters | >= 0 < 1.0.53-1 | 1.0.53-1 |
| linuxfoundation | cups-filters | >= 0 < 1.0.53-1 | 1.0.53-1 |
CVSS provenance
nvdv2.04.0MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:N
osv4.0MEDIUM
vendor_debian4.0MEDIUM
vendor_redhat4.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5hcw-w537-f2mc: cups-browsed in cups-filters before 1
ghsa_unreviewed·2022-05-14
CVE-2014-4338 [MEDIUM] GHSA-5hcw-w537-f2mc: cups-browsed in cups-filters before 1
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all IP addresses.
OSV
CVE-2014-4338: cups-browsed in cups-filters before 1
osv·2014-06-22·CVSS 4.0
CVE-2014-4338 [MEDIUM] CVE-2014-4338: cups-browsed in cups-filters before 1
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all IP addresses.
Red Hat
cups-filters: unsupported BrowseAllow value lets cups-browsed accept from all hosts
vendor_redhat·2014-04-25·CVSS 4.0
CVE-2014-4338 [MEDIUM] cups-filters: unsupported BrowseAllow value lets cups-browsed accept from all hosts
cups-filters: unsupported BrowseAllow value lets cups-browsed accept from all hosts
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all IP addresses.
A flaw was found in the way the cups-browsed daemon interpreted the "BrowseAllow" directive in the cups-browsed.conf file. An attacker able to add a malformed "BrowseAllow" directive to the cups-browsed.conf file could use this flaw to bypass intended access restrictions.
Debian
CVE-2014-4338: cups-filters - cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass int...
vendor_debian·2014·CVSS 4.0
CVE-2014-4338 [MEDIUM] CVE-2014-4338: cups-filters - cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass int...
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all IP addresses.
Scope: local
bookworm: resolved (fixed in 1.0.53-1)
bullseye: resolved (fixed in 1.0.53-1)
forky: resolved (fixed in 1.0.53-1)
sid: resolved (fixed in 1.0.53-1)
trixie: resolved (fixed in 1.0.53-1)
No detection rules found.
No public exploits indexed.
http://openwall.com/lists/oss-security/2014/04/25/7http://openwall.com/lists/oss-security/2014/06/19/12http://rhn.redhat.com/errata/RHSA-2014-1795.htmlhttp://secunia.com/advisories/62044http://www.securityfocus.com/bid/68124https://bugs.linuxfoundation.org/show_bug.cgi?id=1204http://openwall.com/lists/oss-security/2014/04/25/7http://openwall.com/lists/oss-security/2014/06/19/12http://rhn.redhat.com/errata/RHSA-2014-1795.htmlhttp://secunia.com/advisories/62044http://www.securityfocus.com/bid/68124https://bugs.linuxfoundation.org/show_bug.cgi?id=1204
2014-06-22
Published