Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-47076 PoC — libcupsfilters's cfGetPrinterAttributes5 does not validate IPP attributes returned from an IPP server

Source
https://github.com/lkarlslund/jugular
Associated Vulnerability
Title:libcupsfilters's cfGetPrinterAttributes5 does not validate IPP attributes returned from an IPP server (CVE-2024-47076)
Description:CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters of the former `cups-filters` package as library functions to be used for the data format conversion tasks needed in Printer Applications. The `cfGetPrinterAttributes5` function in `libcupsfilters` does not sanitize IPP attributes returned from an IPP server. When these IPP attributes are used, for instance, to generate a PPD file, this can lead to attacker controlled data to be provided to the rest of the CUPS system.
Description
Ultrafast CUPS-browsed scanner (CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177)
File Snapshot

 [4.0K]  /data/pocs/c6464d9d3689b8cbf3c63d74baa559bba471757e
├── [1.8K]  go.mod
├── [ 11K]  go.sum
├── [1.0K]  license.md
├── [4.2K]  main.go
└── [2.3K]  readme.md

0 directories, 5 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →