CVE-2007-4351
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-4351
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted (1) textWithLanguage or (2) nameWithLanguage Internet Printing Protocol (IPP) tag, leading to a stack-based buffer overflow.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
CUPS IPP标签远程栈溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Apple Common Unix Printing System(CUPS)是美国苹果(Apple)公司的一套开源的用于OS X和类Unix系统的打印系统。该系统基于Internet打印协议(IPP),提供大多数PostScript和raster打印机服务。 CUPS的cups/ipp.c文件中的ippReadIO()函数在处理IPP(Internet打印协议)标签时存在栈溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 如果远程攻击者向打印服务发送了包含有特制textWithLanguage或nameW
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-4351
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-4351
请登录查看更多情报信息。
- https://bugzilla.redhat.com/show_bug.cgi?id=361661x_refsource_CONFIRM
- http://docs.info.apple.com/article.html?artnum=307179x_refsource_CONFIRM
- http://support.avaya.com/elmodocs2/security/ASA-2007-476.htmx_refsource_CONFIRM
- http://secunia.com/secunia_research/2007-76/advisory/x_refsource_MISC
- https://issues.rpath.com/browse/RPL-1875x_refsource_CONFIRM
- http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.501902vendor-advisoryx_refsource_SLACKWARE
- https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00012.htmlvendor-advisoryx_refsource_FEDORA
- http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlvendor-advisoryx_refsource_APPLE
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10604vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2007-4351
Same Patch Batch · n/a · 2007-10-31 · 44 CVEs total
| CVE-2002-2383 | F2HTML.PL SQL注入漏洞 | |
| CVE-2002-2386 | XOOPS Quizz模块跨站脚本(XSS)漏洞 | |
| CVE-2002-2385 | Hotfoon Dialer远程缓冲区溢出漏洞 | |
| CVE-2002-2387 | Hyperion FTP目录遍历漏洞 | |
| CVE-2002-2390 | Trillian Identd远程缓冲区溢出漏洞 | |
| CVE-2002-2391 | Xoops WebChat远程SQL插入漏洞 | |
| CVE-2002-2392 | Nullsoft Winamp Skin可预见文件位置漏洞 | |
| CVE-2002-2393 | SolarWinds Serv-U File Server 输入验证错误漏洞 | |
| CVE-2007-5740 | Perdition IMAP代理str_vwrite函数远程格式串处理漏洞 | |
| CVE-2002-2389 | Fastlink Software TheServer纯文本密码存储漏洞 | |
| CVE-2002-2384 | Hotfoon Dialer明文口令存储漏洞 | |
| CVE-2002-2382 | CVSup-Mirror以不安全方式创建临时文件漏洞 | |
| CVE-2002-2381 | GTetrinet多个远程缓冲区溢出漏洞 | |
| CVE-2002-2380 | Arescom NetDSL-800固件存在未公开帐户漏洞 | |
| CVE-2002-2379 | Cisco AS5350通用网关远程拒绝服务攻击漏洞 | |
| CVE-2002-2378 | AN HTTPD出错页跨站脚本漏洞 | |
| CVE-2002-2377 | Zap Book服务器端包含任意命令行执行漏洞 | |
| CVE-2002-2376 | E-Guest Guest Book脚本注入漏洞 | |
| CVE-2002-2375 | CommuniGate Pro目录遍历漏洞 | |
| CVE-2002-2374 | Sun PatchPro不安全临时文件漏洞 |
Showing top 20 of 44 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2007-4351
No comments yet