CVE-2015-2265 — Command Injection in Cups-filters

CWE-77 — Command Injection CWE-78 — OS Command Injection8 documents8 sources

Severity

7.5HIGHNVD

CNA8.3OSV8.3

EPSS

5.8%

top 9.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linuxfoundation Cups-filters Canonical Ubuntu Linux

Timeline

PublishedMar 24

Latest updateMay 17

Description

The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶Debianlinuxfoundation/cups-filters< 1.0.61-5+3

▶NVDlinuxfoundation/cups-filters1.0.65

Also affects: Ubuntu Linux 14.04, 14.10

Patches

Patch: www.ubuntu.com ↗Patch: www.ubuntu.com ↗

🔴Vulnerability Details

GHSA

GHSA-4f5g-64px-29pq: The remove_bad_chars function in utils/cups-browsed↗2022-05-17

▶

OSV

CVE-2015-2265: The remove_bad_chars function in utils/cups-browsed↗2015-03-24

▶

CVEList

CVE-2015-2265: The remove_bad_chars function in utils/cups-browsed↗2015-03-24

▶

📋Vendor Advisories

Ubuntu

cups-filters vulnerability↗2015-03-16

▶

Red Hat

cups-filters: remote command execution in remove_bad_chars() (incomplete fix for CVE-2014-2707)↗2015-02-26

▶

Debian

CVE-2015-2265: cups-filters - The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0...↗2015

▶

💬Community

Bugzilla

CVE-2015-2265 cups-filters: remote command execution in remove_bad_chars() (incomplete fix for CVE-2014-2707)↗2015-03-05

▶