CVE-2008-0047

Published: 18 March 2008

Heap-based buffer overflow in the cgiCompileSearch function in CUPS 1.3.5, and other versions including the version bundled with Apple Mac OS X 10.5.2, when printer sharing is enabled, allows remote attackers to execute arbitrary code via crafted search expressions.

Priority

Medium

Status

Package Release Status
cupsys
Launchpad, Ubuntu, Debian
Upstream
Released (1.3.7)
Patches:
Vendor: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=472105
vendor: vsec Message-Id: <6D6FBB20-AEC9-436B-83E4-4EB826D92F10@apple.com>