CVE-2014-4336
The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters before 1.0.53 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the host name. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0052 (0.5%)
Percentil: 67.0%
EPSS: 2026-05-06
Afecta
linuxfoundation:cups-filtersDescripción técnica
The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters before 1.0.53 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the host name. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
Publicada: 22/6/2014, 21:55:03
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7194
- http://openwall.com/lists/oss-security/2014/04/25/7
- http://openwall.com/lists/oss-security/2014/06/19/12
- http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7194
- http://openwall.com/lists/oss-security/2014/04/25/7
- http://openwall.com/lists/oss-security/2014/06/19/12