Short Name |
APP:CUPS:COMMAND-CHAR |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
CUPS Command Shell Escape Character |
Release Date |
2005/03/02 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in foomatic-rip filter installed with the Common Unix Printing System (CUPS). Because the filter does not sufficiently check command-line parameters and environment variables, attackers can execute commands on a remote print server with the permissions of the spoold user.
Reportedly, the LinuxPrinting.org Foomatic-Filter is affected by an arbitrary command-execution vulnerability. Although unconfirmed, this issue is likely due to the affected script's failure to properly validate input when issuing shell commands. An attacker may exploit this issue to execute arbitrary commands as the printer user on a computer running the vulnerable software.