cfGetPrinterAttributes5 does not validate IPP attributes returned from an IPP server

Summary

cfGetPrinterAttributes5 does not sanitize IPP attributes returned from an IPP server

Details

cfGetPrinterAttributes5 does not sanitize IPP attributes returned from an IPP server, and when those attributes are used, for instance, to generate a PPD file, this leads to user controlled values.

PoC

This bug is part of an exploit chain leading to RCE described here.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

cfGetPrinterAttributes5 does not validate IPP attributes returned from an IPP server

Package

Affected versions

Patched versions

Description

Summary

Details

PoC

Severity

CVE ID

Weaknesses

Credits