CUPS PNG Filter Integer Overflow Vulnerability - Security


Editor Login \| Register		Ekle

> World > Security

CUPS PNG Filter Integer Overflow Vulnerability - Security - World -

CWRedLight

(Date : 15.04.2008 16:51:27)

CUPS PNG Filter Integer Overflow Vulnerability

Secunia Advisory:	SA29809
Release Date:	2008-04-15

Critical:	Moderately critical
Impact:	System access
Where:	From local network
Solution Status:	Vendor Workaround

Software:	CUPS 1.x

Description:
Thomas Pollet has reported a vulnerability in CUPS, which potentially can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to two integer overflow errors in filter/image-png.c when processing PNG files. These can be exploited to cause a heap-based buffer overflow via overly large width and height PNG fields.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is reported in version 1.3.7. Other versions may also be affected.

Solution:
Fixed in the SVN repository.

Restrict access to trusted users only.

Provided and/or discovered by:
Thomas Pollet

Original Advisory:
http://www.cups.org/str.php?L2790

Derecelendir

Kaynak

http://secunia.com/advisories/29809/

İçerik İhbarı

Bağlantılar: bilgininefendisi.net

Open Source Document Project

AUP&TOS