Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Apple
  • Mac Os X
Easy Software Products
  • Cups

Configuration 1 [-]

AND
cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
OR cpe:2.3:a:easy_software_products:cups:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:easy_software_products:cups:1.2.9:*:*:*:*:*:*:*
cpe:2.3:a:easy_software_products:cups:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:easy_software_products:cups:1.2.12:*:*:*:*:*:*:*
cpe:2.3:a:easy_software_products:cups:1.3.3:*:*:*:*:*:*:*

No data.

References
Link Providers
http://bugs.gentoo.org/show_bug.cgi?id=201570 cve-icon cve-icon
http://docs.info.apple.com/article.html?artnum=307179 cve-icon cve-icon
http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00003.html cve-icon cve-icon
http://secunia.com/advisories/28113 cve-icon cve-icon
http://secunia.com/advisories/28129 cve-icon cve-icon
http://secunia.com/advisories/28136 cve-icon cve-icon
http://secunia.com/advisories/28200 cve-icon cve-icon
http://secunia.com/advisories/28386 cve-icon cve-icon
http://secunia.com/advisories/28441 cve-icon cve-icon
http://secunia.com/advisories/28636 cve-icon cve-icon
http://secunia.com/advisories/28676 cve-icon cve-icon
http://www.cups.org/str.php?L2589 cve-icon cve-icon
http://www.debian.org/security/2007/dsa-1437 cve-icon cve-icon
http://www.gentoo.org/security/en/glsa/glsa-200712-14.xml cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDVSA-2008:036 cve-icon cve-icon
http://www.novell.com/linux/security/advisories/suse_security_summary_report.html cve-icon cve-icon
http://www.securityfocus.com/bid/26910 cve-icon cve-icon
http://www.securityfocus.com/bid/26917 cve-icon cve-icon
http://www.ubuntu.com/usn/usn-563-1 cve-icon cve-icon
http://www.us-cert.gov/cas/techalerts/TA07-352A.html cve-icon cve-icon
http://www.vupen.com/english/advisories/2007/4238 cve-icon cve-icon
http://www.vupen.com/english/advisories/2007/4242 cve-icon cve-icon
https://exchange.xforce.ibmcloud.com/vulnerabilities/39097 cve-icon cve-icon
https://exchange.xforce.ibmcloud.com/vulnerabilities/39101 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2007-5849 cve-icon
https://www.cve.org/CVERecord?id=CVE-2007-5849 cve-icon
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00908.html cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-12-19T21:00:00

Updated: 2024-08-07T15:47:00.628Z

Reserved: 2007-11-06T00:00:00

Link: CVE-2007-5849

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-12-19T21:46:00.000

Modified: 2017-07-29T01:33:54.630

Link: CVE-2007-5849

cve-icon Redhat

Severity :

Publid Date: 2007-12-13T00:00:00Z

Links: CVE-2007-5849 - Bugzilla