NVD

Id
24354  
Name
CVE-2015-2265  
Description
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (2) PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2015-03-24  
Modified Date
2016-12-27  
Seq
2015-2265  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
128883 24354 CVE-2015-2265 http://advisories.mageia.org/MGASA-2015-0132.html  View
128884 24354 CVE-2015-2265 http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7333  View
128885 24354 CVE-2015-2265 openSUSE-SU-2015:1244  View
128886 24354 CVE-2015-2265 MDVSA-2015:196  View
128887 24354 CVE-2015-2265 USN-2532-1  View
128888 24354 CVE-2015-2265 https://bugs.linuxfoundation.org/show_bug.cgi?id=1265  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
6605 JVNDB-2015-001925 cups-filters の utils/cups-browsed.c 内の remove_bad_chars 関数における任意のコマンドを実行される脆弱性 cups-filters の utils/cups-browsed.c 内の remove_bad_chars 関数には、任意のコマンドを実行される脆弱性が存在します。 CVE-2015-2265 79490 CVE-2015-2265 24354 7.5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-001925.html 2015-02-27 2015-04-27 View