Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
DLA-365-1 | foomatic-filters security update |
![]() |
DSA-3411-1 | cups-filters security update |
![]() |
DSA-3429-1 | foomatic-filters security update |
![]() |
USN-2831-1 | cups-filters vulnerability |
![]() |
USN-2831-2 | foomatic-filters vulnerability |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Sun, 13 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-06T08:13:32.694Z
Reserved: 2015-11-24T00:00:00
Link: CVE-2015-8327

No data.

Status : Deferred
Published: 2015-12-17T19:59:05.590
Modified: 2025-04-12T10:46:40.837
Link: CVE-2015-8327


No data.