Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-4504 PoC — OpenPrinting CUPS/libppd Postscript Parsing Heap Overflow

Source
https://github.com/djjohnson565/CUPS-Exploit
Associated Vulnerability
Title:OpenPrinting CUPS/libppd Postscript Parsing Heap Overflow (CVE-2023-4504)
Description:Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023.
Description
Heap-based buffer overflow example based on CVE-2023-4504
Readme
# CUPS-Exploit
## Heap-based buffer overflow example based on [CVE-2023-4504](https://github.com/OpenPrinting/cups/security/advisories/GHSA-pf5r-86w9-678h)

Collaboration by Derek Johnson and Shobhit Mehrotra\
CS367 Spring 2025 Final Project\
[You can view our report here!](https://github.com/djjohnson565/CUPS-Exploit/blob/main/Report.pdf)
File Snapshot

 [4.0K]  /data/pocs/fd51658728171616ebc345d389fcdf1b354f2429
├── [2.0K]  fixed.c
├── [2.0K]  instructions.txt
├── [ 148]  malicious.ppd
├── [ 342]  README.md
├── [1.8K]  replicate.c
└── [194K]  Report.pdf

0 directories, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →