Launchpad.net

CVE 2010-1748

The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, does not properly handle parameter values containing a % (percent) character without two subsequent hex characters, which allows context-dependent attackers to obtain sensitive information from cupsd process memory via a crafted request, as demonstrated by the (1) /admin?OP=redirect&URL=% and (2) /admin?URL=/admin/&OP=% URIs.

Related bugs and status

CVE-2010-1748 (Candidate) is related to these bugs:

Bug #369850: Cannot set up parallel port printer

		In	Importance	Status
369850	Cannot set up parallel port printer	linux (Ubuntu)	High	Invalid
369850	Cannot set up parallel port printer	udev (Ubuntu)	Undecided	Invalid
369850	Cannot set up parallel port printer	cups (Ubuntu)	Undecided	Fix Released
369850	Cannot set up parallel port printer	cups (Ubuntu Lucid)	Undecided	Won't Fix
369850	Cannot set up parallel port printer	linux (Ubuntu Lucid)	Undecided	Invalid
369850	Cannot set up parallel port printer	udev (Ubuntu Lucid)	Undecided	Invalid
369850	Cannot set up parallel port printer	cups (Ubuntu Maverick)	Undecided	Fix Released
369850	Cannot set up parallel port printer	linux (Ubuntu Maverick)	High	Invalid
369850	Cannot set up parallel port printer	udev (Ubuntu Maverick)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2010-1748

Related bugs and status

Related bugs

References