Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-47176 PoC — cups-browsed binds to `INADDR_ANY:631`, trusting any packet from any source

Source
https://github.com/gianlu111/CUPS-CVE-2024-47176
Associated Vulnerability
Title:cups-browsed binds to `INADDR_ANY:631`, trusting any packet from any source (CVE-2024-47176)
Description:CUPS is a standards-based, open-source printing system, and `cups-browsed` contains network printing functionality including, but not limited to, auto-discovering print services and shared printers. `cups-browsed` binds to `INADDR_ANY:631`, causing it to trust any packet from any source, and can cause the `Get-Printer-Attributes` IPP request to an attacker controlled URL. When combined with other vulnerabilities, such as CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177, an attacker can execute arbitrary commands remotely on the target machine without authentication when a malicious printer is printed to.
Description
A Mass Scanner designed to detect the CVE-2024-47176 vulnerability across systems running the Common Unix Printing System (CUPS).
Readme


# CVE-2024-47176 Vulnerability Scanner for CUPS

A simple tool to scan systems running **CUPS (Common Unix Printing System)** for the **CVE-2024-47176** vulnerability. This vulnerability can lead to remote code execution (RCE) through the **Internet Printing Protocol (IPP)** on port 631.

## Features

- **Automated Scanning**: Sends crafted UDP packets to detect vulnerable CUPS instances.
- **Multi-threaded Scanning**: Efficiently scans multiple IP addresses simultaneously.
- **Callback Logging**: Logs responses from vulnerable systems via a callback server.

## Installation

1. Clone the repository:
   ```bash
   git clone https://github.com/your-username/CVE-2024-47176-scanner.git


## Usage

Run the scanner with the following command:

```bash
python3 CVE-2024-47176.py <HOST_CALLBACK> <FILE_INPUT>
```

- `<HOST_CALLBACK>`: The URL or IP of your callback server.
- `<FILE_INPUT>`: A text file containing a list of target IP addresses, one per line.

### Example

```bash
python3 CVE-2024-47176.py HOST_CALLBACK FILE_INPUT
```
File Snapshot

 [4.0K]  /data/pocs/ebe2683a0a7e5fd1e81008e02204802869eddf9d
├── [2.0K]  CVE-2024-47176.py
└── [1.0K]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →