Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2964

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2011-2964
Last Modified 29 May 2013 11:08:53
Published 29 Jul 2011 04:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-2964

Summary

foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows remote attackers to execute arbitrary code via a crafted *FoomaticRIPCommandLine field in a .ppd file, a different vulnerability than CVE-2011-2697.

Vulnerable Systems

Application

  • Linuxfoundation Foomatic 4.0.6


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=721001

CONFIRM - https://bugzilla.novell.com/show_bug.cgi?id=698451

MLIST - [oss-security] 20110728 Re: CVE Request: hplip/foomatic-filters

MLIST - [oss-security] 20110718 Re: CVE Request: hplip/foomatic-filters

MLIST - [oss-security] 20110713 CVE Request: hplip/foomatic-filters

XF - foomatic-foomatic-code-execution(68994)

UBUNTU - USN-1194-1

REDHAT - RHSA-2011:1110

MANDRIVA - MDVSA-2011:125

SECUNIA - 45477

GENTOO - GLSA-201203-07

CONFIRM - http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

Related Patches

SUN115835-06 Solaris 9 SPARC: Ghostscript patch

Novell SUSE 2011:4966 foomatic-filters security update for SLE 11 SP1 i586

Novell SUSE 2011:7677 foomatic-filters security update for SLE 10 SP4 i586


Last Updated: 27 May 2016 10:49:44