CVE-2015-2265
published 2015-03-24CVE-2015-2265: The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.96%
85.5th percentile
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | cups-filters | < cups-filters 1.0.61-5 (bookworm) | cups-filters 1.0.61-5 (bookworm) |
| linuxfoundation | cups-filters | <= 1.0.65 | — |
| linuxfoundation | cups-filters | >= 0 < 1.0.61-5 | 1.0.61-5 |
| linuxfoundation | cups-filters | >= 0 < 1.0.61-5 | 1.0.61-5 |
| linuxfoundation | cups-filters | >= 0 < 1.0.61-5 | 1.0.61-5 |
| linuxfoundation | cups-filters | >= 0 < 1.0.61-5 | 1.0.61-5 |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv8.3HIGH
vendor_debian8.3HIGH
vendor_redhat8.3HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4f5g-64px-29pq: The remove_bad_chars function in utils/cups-browsed
ghsa_unreviewed·2022-05-17·CVSS 8.3
CVE-2015-2265 [HIGH] CWE-77 GHSA-4f5g-64px-29pq: The remove_bad_chars function in utils/cups-browsed
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
OSV
CVE-2015-2265: The remove_bad_chars function in utils/cups-browsed
osv·2015-03-24·CVSS 8.3
CVE-2015-2265 [HIGH] CVE-2015-2265: The remove_bad_chars function in utils/cups-browsed
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
Ubuntu
cups-filters vulnerability
vendor_ubuntu·2015-03-16
CVE-2015-2265 cups-filters vulnerability
Title: cups-filters vulnerability
Summary: cups-filters could be made to run programs if it received specially crafted
network traffic.
It was discovered that cups-browsed incorrectly filtered remote printer
names and strings. A remote attacker could use this issue to possibly
execute arbitrary commands.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
cups-filters: remote command execution in remove_bad_chars() (incomplete fix for CVE-2014-2707)
vendor_redhat·2015-02-26·CVSS 8.3
CVE-2015-2265 [HIGH] CWE-78 cups-filters: remote command execution in remove_bad_chars() (incomplete fix for CVE-2014-2707)
cups-filters: remote command execution in remove_bad_chars() (incomplete fix for CVE-2014-2707)
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
Statement: Not vulnerable. This issue did not affect the versions of cups-filters as shipped with Red Hat Enterprise Linux 7.
Package: cups-filters (Red Hat Enterprise Linux 7) - Not affected
Debian
CVE-2015-2265: cups-filters - The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0...
vendor_debian·2015·CVSS 8.3
CVE-2015-2265 [HIGH] CVE-2015-2265: cups-filters - The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0...
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
Scope: local
bookworm: resolved (fixed in 1.0.61-5)
bullseye: resolved (fixed in 1.0.61-5)
forky: resolved (fixed in 1.0.61-5)
sid: resolved (fixed in 1.0.61-5)
trixie: resolved (fixed in 1.0.61-5)
No detection rules found.
No public exploits indexed.
http://advisories.mageia.org/MGASA-2015-0132.htmlhttp://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7333http://lists.opensuse.org/opensuse-updates/2015-07/msg00033.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2015:196http://www.ubuntu.com/usn/USN-2532-1https://bugs.linuxfoundation.org/show_bug.cgi?id=1265http://advisories.mageia.org/MGASA-2015-0132.htmlhttp://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7333http://lists.opensuse.org/opensuse-updates/2015-07/msg00033.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2015:196http://www.ubuntu.com/usn/USN-2532-1https://bugs.linuxfoundation.org/show_bug.cgi?id=1265
2015-03-24
Published