CVE-2009-0949

The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.

Published: Jun 9, 2009
Updated: May 9, 2024
CVE: CVE-2009-0949
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

Affected Software
References

Software	From	Fixed in
apple / cups	-	1.3.10
canonical / ubuntu_linux	9.04	9.04.x
canonical / ubuntu_linux	8.10	8.10.x
canonical / ubuntu_linux	8.04	8.04.x
canonical / ubuntu_linux	6.06	6.06.x
debian / debian_linux	5.0	5.0.x
debian / debian_linux	4.0	4.0.x
debian / debian_linux	6.0	6.0.x
apple / mac_os_x_server	10.5.0	10.5.8
apple / mac_os_x	10.5.0	10.5.8
apple / mac_os_x_server	10.0.0	10.4.11
apple / mac_os_x	10.0.0	10.4.11
opensuse / opensuse	10.3	10.3.x
suse / linux_enterprise	10.0	10.0.x
suse / linux_enterprise	9.0	9.0.x

Vulnerability Database

CVE-2009-0949

Deep Security Visibility Without the Complexity