9.8
CVE-2010-2941
- EPSS 6.47%
- Veröffentlicht 05.11.2010 17:00:01
- Zuletzt bearbeitet 16.06.2026 23:21:47
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Apple ≫ macOS X Server Version < 10.5.8
Apple ≫ macOS X Server Version >= 10.6.0 <= 10.6.4
Fedoraproject ≫ Fedora Version12
Fedoraproject ≫ Fedora Version13
Fedoraproject ≫ Fedora Version14
Canonical ≫ Ubuntu Linux Version6.06
Canonical ≫ Ubuntu Linux Version8.04
Canonical ≫ Ubuntu Linux Version9.10
Canonical ≫ Ubuntu Linux Version10.04 SwEdition-
Canonical ≫ Ubuntu Linux Version10.10
Debian ≫ Debian Linux Version5.0
Suse ≫ Linux Enterprise Version10.0 Updatesp3
Suse ≫ Linux Enterprise Version11.0 Update-
Suse ≫ Linux Enterprise Version11.0 Updatesp1
Suse ≫ Linux Enterprise Server Version9
Redhat ≫ Enterprise Linux Version5.0
Redhat ≫ Enterprise Linux Version6.0
Redhat ≫ Enterprise Linux Desktop Version5.0
Redhat ≫ Enterprise Linux Server Version5.0
Redhat ≫ Enterprise Linux Workstation Version5.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.47% | 0.929 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
http://support.apple.com/kb/HT4435
http://secunia.com/advisories/43521
http://www.debian.org/security/2011/dsa-2176
http://www.vupen.com/english/advisories/2011/0535
http://security.gentoo.org/glsa/glsa-201207-10.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2010:232
http://www.mandriva.com/security/advisories?name=MDVSA-2010:233
http://www.mandriva.com/security/advisories?name=MDVSA-2010:234
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html
http://rhn.redhat.com/errata/RHSA-2010-0811.html
http://www.vupen.com/english/advisories/2010/2856
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefox
http://secunia.com/advisories/42867
http://www.vupen.com/english/advisories/2011/0061
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050977.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051277.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051301.html
http://secunia.com/advisories/42287
http://securitytracker.com/id?1024662
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.468323
http://www.osvdb.org/68951
http://www.redhat.com/support/errata/RHSA-2010-0866.html
http://www.securityfocus.com/bid/44530
http://www.ubuntu.com/usn/USN-1012-1
http://www.vupen.com/english/advisories/2010/3042
http://www.vupen.com/english/advisories/2010/3088
https://bugzilla.redhat.com/show_bug.cgi?id=624438
https://exchange.xforce.ibmcloud.com/vulnerabilities/62882