This vulnerability potentially allows local attackers to escalate privileges on affected installations of PaperCut NG. An attacker must be able to write into the local C Drive. In addition, the attacker must have admin privileges to enable Print Archiving or encounter a misconfigured system. This vulnerability does not apply to PaperCut NG installs that have Print Archiving enabled and configured as per the recommended set up procedure. This specific flaw exists within the pc-pdl-to-image process. The process loads an executable from an unsecured location. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: PaperCut
Published: 2023-11-14T04:04:03.280Z
Updated: 2024-08-02T08:14:25.129Z
Reserved: 2023-11-08T04:55:38.051Z
Link: CVE-2023-6006
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-11-14T04:15:07.850
Modified: 2023-11-21T16:12:34.167
Link: CVE-2023-6006
Redhat
No data.