CVE-2004-1267

Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote attackers to execute arbitrary code via a crafted HPGL file.

Published: Jan 10, 2005
Updated: Apr 13, 2023
CVE: CVE-2004-1267
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
easy_software_products / cups	1.1.19_rc5	1.1.19_rc5.x
easy_software_products / cups	1.1.10	1.1.10.x
easy_software_products / cups	1.1.16	1.1.16.x
easy_software_products / cups	1.1.7	1.1.7.x
easy_software_products / cups	1.0.4_8	1.0.4_8.x
easy_software_products / cups	1.1.15	1.1.15.x
easy_software_products / cups	1.1.21	1.1.21.x
easy_software_products / cups	1.1.13	1.1.13.x
easy_software_products / cups	1.1.17	1.1.17.x
easy_software_products / cups	1.1.4_3	1.1.4_3.x
easy_software_products / cups	1.1.4	1.1.4.x
easy_software_products / cups	1.1.12	1.1.12.x
easy_software_products / cups	1.1.22_rc1	1.1.22_rc1.x
easy_software_products / cups	1.1.4_5	1.1.4_5.x
easy_software_products / cups	1.1.1	1.1.1.x
easy_software_products / cups	1.1.20	1.1.20.x
easy_software_products / cups	1.1.18	1.1.18.x
easy_software_products / cups	1.1.19	1.1.19.x
easy_software_products / cups	1.0.4	1.0.4.x
easy_software_products / cups	1.1.14	1.1.14.x
easy_software_products / cups	1.1.4_2	1.1.4_2.x
easy_software_products / cups	1.1.6	1.1.6.x
redhat / fedora_core	core_2.0	core_2.0.x
redhat / fedora_core	core_3.0	core_3.0.x

Vulnerability Database

CVE-2004-1267

Deep Security Visibility Without the Complexity