CVE-2014-3537

The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.7:rc1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.7.1:b1:*:*:*:*:*:*
cpe:2.3:a:apple:cups:1.7.2:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

History

13 Feb 2023, 00:40

Type Values Removed Values Added
References
  • {'url': 'https://access.redhat.com/errata/RHSA-2014:1388', 'name': 'https://access.redhat.com/errata/RHSA-2014:1388', 'tags': [], 'refsource': 'MISC'}
  • {'url': 'https://access.redhat.com/errata/RHBA-2015:0386', 'name': 'https://access.redhat.com/errata/RHBA-2015:0386', 'tags': [], 'refsource': 'MISC'}
  • {'url': 'https://access.redhat.com/security/cve/CVE-2014-3537', 'name': 'https://access.redhat.com/security/cve/CVE-2014-3537', 'tags': [], 'refsource': 'MISC'}
Summary It was discovered that CUPS allowed certain users to create symbolic links in certain directories under /var/cache/cups/. A local user with the 'lp' group privileges could use this flaw to read the contents of arbitrary files on the system or, potentially, escalate their privileges on the system. The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/.

02 Feb 2023, 15:16

Type Values Removed Values Added
Summary The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/. It was discovered that CUPS allowed certain users to create symbolic links in certain directories under /var/cache/cups/. A local user with the 'lp' group privileges could use this flaw to read the contents of arbitrary files on the system or, potentially, escalate their privileges on the system.
References
  • (MISC) https://access.redhat.com/errata/RHSA-2014:1388 -
  • (MISC) https://access.redhat.com/errata/RHBA-2015:0386 -
  • (MISC) https://access.redhat.com/security/cve/CVE-2014-3537 -

Information

Published : 2014-07-23 14:55

Updated : 2023-12-10 11:31


NVD link : CVE-2014-3537

Mitre link : CVE-2014-3537

CVE.ORG link : CVE-2014-3537


JSON object : View

Products Affected

apple

  • cups

canonical

  • ubuntu_linux

fedoraproject

  • fedora
CWE
CWE-59

Improper Link Resolution Before File Access ('Link Following')