CVE-2014-4336

The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters before 1.0.53 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the host name. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.
Configurations

Configuration 1 (hide)

cpe:2.3:a:linuxfoundation:cups-filters:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-06-22 21:55

Updated : 2023-12-10 11:31


NVD link : CVE-2014-4336

Mitre link : CVE-2014-4336

CVE.ORG link : CVE-2014-4336


JSON object : View

Products Affected

linuxfoundation

  • cups-filters
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')