#VU41791 OS Command Injection in cups-filters - CVE-2014-2707

Cybersecurity Help s.r.o.

Published: 2014-04-17 | Updated: 2020-08-10

Vulnerability identifier: #VU41791

Vulnerability risk: High

CVSSv4.0: 6.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2014-2707

CWE-ID: CWE-78

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
cups-filters
Other software / Other software solutions

Vendor: OpenPrinting

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

cups-browsed in cups-filters 1.0.41 before 1.0.51 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the (1) model or (2) PDL, related to "System V interface scripts generated for queues."

Mitigation
Install update from vendor's website.

Vulnerable software versions

cups-filters: 1.0.41 - 1.0.50

External links
https://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7188#NEWS
https://lists.fedoraproject.org/pipermail/package-announce/2014-April/131485.html
https://seclists.org/oss-sec/2014/q2/13
https://secunia.com/advisories/57530
https://www.ubuntu.com/usn/USN-2210-1
https://bugzilla.redhat.com/show_bug.cgi?id=1083326

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Fedora 21 update for cups-filters

Fedora 22 update for cups-filters

Gentoo update for cups-filters

OS Command Injection in OpenPrinting cups-filters