CVE-2013-6476

EPSS 0.11%
Veröffentlicht 14.03.2014 15:55:05
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Canonical ≫ Ubuntu Linux Version10.04 Update- Editionlts

Canonical ≫ Ubuntu Linux Version12.04 Update- Editionlts

Canonical ≫ Ubuntu Linux Version12.10

Canonical ≫ Ubuntu Linux Version13.10

Debian ≫ Debian Linux

Fedoraproject ≫ Fedora

Linuxfoundation ≫ Cups-filters Version <= 1.0.46

Linuxfoundation ≫ Cups-filters Version1.0

Linuxfoundation ≫ Cups-filters Version1.0.1

Linuxfoundation ≫ Cups-filters Version1.0.2

Linuxfoundation ≫ Cups-filters Version1.0.3

Linuxfoundation ≫ Cups-filters Version1.0.4

Linuxfoundation ≫ Cups-filters Version1.0.5

Linuxfoundation ≫ Cups-filters Version1.0.6

Linuxfoundation ≫ Cups-filters Version1.0.7

Linuxfoundation ≫ Cups-filters Version1.0.8

Linuxfoundation ≫ Cups-filters Version1.0.9

Linuxfoundation ≫ Cups-filters Version1.0.10

Linuxfoundation ≫ Cups-filters Version1.0.11

Linuxfoundation ≫ Cups-filters Version1.0.12

Linuxfoundation ≫ Cups-filters Version1.0.13

Linuxfoundation ≫ Cups-filters Version1.0.14

Linuxfoundation ≫ Cups-filters Version1.0.15

Linuxfoundation ≫ Cups-filters Version1.0.16

Linuxfoundation ≫ Cups-filters Version1.0.17

Linuxfoundation ≫ Cups-filters Version1.0.18

Linuxfoundation ≫ Cups-filters Version1.0.19

Linuxfoundation ≫ Cups-filters Version1.0.20

Linuxfoundation ≫ Cups-filters Version1.0.21

Linuxfoundation ≫ Cups-filters Version1.0.22

Linuxfoundation ≫ Cups-filters Version1.0.23

Linuxfoundation ≫ Cups-filters Version1.0.24

Linuxfoundation ≫ Cups-filters Version1.0.25

Linuxfoundation ≫ Cups-filters Version1.0.26

Linuxfoundation ≫ Cups-filters Version1.0.27

Linuxfoundation ≫ Cups-filters Version1.0.28

Linuxfoundation ≫ Cups-filters Version1.0.29

Linuxfoundation ≫ Cups-filters Version1.0.30

Linuxfoundation ≫ Cups-filters Version1.0.31

Linuxfoundation ≫ Cups-filters Version1.0.32

Linuxfoundation ≫ Cups-filters Version1.0.33

Linuxfoundation ≫ Cups-filters Version1.0.34

Linuxfoundation ≫ Cups-filters Version1.0.35

Linuxfoundation ≫ Cups-filters Version1.0.36

Linuxfoundation ≫ Cups-filters Version1.0.37

Linuxfoundation ≫ Cups-filters Version1.0.38

Linuxfoundation ≫ Cups-filters Version1.0.39

Linuxfoundation ≫ Cups-filters Version1.0.40

Linuxfoundation ≫ Cups-filters Version1.0.41

Linuxfoundation ≫ Cups-filters Version1.0.42

Linuxfoundation ≫ Cups-filters Version1.0.43

Linuxfoundation ≫ Cups-filters Version1.0.44

Linuxfoundation ≫ Cups-filters Version1.0.45

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.305

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.4	3.4	6.4	AV:L/AC:M/Au:N/C:P/I:P/A:P

http://www.ubuntu.com/usn/USN-2143-1

http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176

Patch

http://www.debian.org/security/2014/dsa-2875

http://www.debian.org/security/2014/dsa-2876

http://www.ubuntu.com/usn/USN-2144-1

https://bugzilla.redhat.com/show_bug.cgi?id=1027551

https://nvd.nist.gov/vuln/detail/CVE-2013-6476

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-6476

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-6476

EUVD