Vulnerability identifier: #VU32562
Vulnerability risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2013-6476
CWE-ID:
CWE-264
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
cups-filters
Other software /
Other software solutions
Vendor: OpenPrinting
Description
The vulnerability allows a local non-authenticated attacker to read and manipulate data.
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.
Mitigation
Install update from vendor's website.
Vulnerable software versions
cups-filters: 1.0.1 - 1.0.46
External links
https://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176
https://www.debian.org/security/2014/dsa-2875
https://www.debian.org/security/2014/dsa-2876
https://www.ubuntu.com/usn/USN-2143-1
https://www.ubuntu.com/usn/USN-2144-1
https://bugzilla.redhat.com/show_bug.cgi?id=1027551
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.