6.8

CVE-2013-6475

EPSS 7.25%
Published 14.03.2014 15:55:05
Last modified 12.04.2025 10:46:40
Source secalert@redhat.com
Teams watchlist Login
Open Login

Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a crafted PDF file, which triggers a heap-based buffer overflow.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Canonical ≫ Ubuntu Linux Version10.04 Update- Editionlts

Canonical ≫ Ubuntu Linux Version12.04 Update- Editionlts

Canonical ≫ Ubuntu Linux Version12.10

Canonical ≫ Ubuntu Linux Version13.10

Debian ≫ Debian Linux

Fedoraproject ≫ Fedora

Linuxfoundation ≫ Cups-filters Version <= 1.0.46

Linuxfoundation ≫ Cups-filters Version1.0

Linuxfoundation ≫ Cups-filters Version1.0.1

Linuxfoundation ≫ Cups-filters Version1.0.2

Linuxfoundation ≫ Cups-filters Version1.0.3

Linuxfoundation ≫ Cups-filters Version1.0.4

Linuxfoundation ≫ Cups-filters Version1.0.5

Linuxfoundation ≫ Cups-filters Version1.0.6

Linuxfoundation ≫ Cups-filters Version1.0.7

Linuxfoundation ≫ Cups-filters Version1.0.8

Linuxfoundation ≫ Cups-filters Version1.0.9

Linuxfoundation ≫ Cups-filters Version1.0.10

Linuxfoundation ≫ Cups-filters Version1.0.11

Linuxfoundation ≫ Cups-filters Version1.0.12

Linuxfoundation ≫ Cups-filters Version1.0.13

Linuxfoundation ≫ Cups-filters Version1.0.14

Linuxfoundation ≫ Cups-filters Version1.0.15

Linuxfoundation ≫ Cups-filters Version1.0.16

Linuxfoundation ≫ Cups-filters Version1.0.17

Linuxfoundation ≫ Cups-filters Version1.0.18

Linuxfoundation ≫ Cups-filters Version1.0.19

Linuxfoundation ≫ Cups-filters Version1.0.20

Linuxfoundation ≫ Cups-filters Version1.0.21

Linuxfoundation ≫ Cups-filters Version1.0.22

Linuxfoundation ≫ Cups-filters Version1.0.23

Linuxfoundation ≫ Cups-filters Version1.0.24

Linuxfoundation ≫ Cups-filters Version1.0.25

Linuxfoundation ≫ Cups-filters Version1.0.26

Linuxfoundation ≫ Cups-filters Version1.0.27

Linuxfoundation ≫ Cups-filters Version1.0.28

Linuxfoundation ≫ Cups-filters Version1.0.29

Linuxfoundation ≫ Cups-filters Version1.0.30

Linuxfoundation ≫ Cups-filters Version1.0.31

Linuxfoundation ≫ Cups-filters Version1.0.32

Linuxfoundation ≫ Cups-filters Version1.0.33

Linuxfoundation ≫ Cups-filters Version1.0.34

Linuxfoundation ≫ Cups-filters Version1.0.35

Linuxfoundation ≫ Cups-filters Version1.0.36

Linuxfoundation ≫ Cups-filters Version1.0.37

Linuxfoundation ≫ Cups-filters Version1.0.38

Linuxfoundation ≫ Cups-filters Version1.0.39

Linuxfoundation ≫ Cups-filters Version1.0.40

Linuxfoundation ≫ Cups-filters Version1.0.41

Linuxfoundation ≫ Cups-filters Version1.0.42

Linuxfoundation ≫ Cups-filters Version1.0.43

Linuxfoundation ≫ Cups-filters Version1.0.44

Linuxfoundation ≫ Cups-filters Version1.0.45

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	7.25%	0.913

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

http://www.ubuntu.com/usn/USN-2143-1

http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176

Patch

http://www.debian.org/security/2014/dsa-2875

http://www.debian.org/security/2014/dsa-2876

http://www.ubuntu.com/usn/USN-2144-1

http://www.securityfocus.com/bid/66166

https://bugzilla.redhat.com/show_bug.cgi?id=1027550

https://nvd.nist.gov/vuln/detail/CVE-2013-6475

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-6475

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-6475

EUVD