The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.
Advisories
Source ID Title
Debian DSA Debian DSA DSA-2875-1 cups-filters security update
Debian DSA Debian DSA DSA-2876-1 cups security update
EUVD EUVD EUVD-2013-6280 The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.
Ubuntu USN Ubuntu USN USN-2143-1 cups-filters vulnerabilities
Ubuntu USN Ubuntu USN USN-2144-1 CUPS vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-06T17:39:01.883Z

Reserved: 2013-11-04T00:00:00

Link: CVE-2013-6476

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2014-03-14T15:55:05.557

Modified: 2025-04-12T10:46:40.837

Link: CVE-2013-6476

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.