Signature Detail

APP: Apple CUPS IPP Use-after-free Memory Corruption

This signature detects attempts to exploit a known vulnerability against implementation of Internet Printing Protocol (IPP) of the Common Unix Printing System (CUPS). A successful attack can lead to arbitrary code execution.

Extended Description

CUPS server is prone to a remote memory-corruption vulnerability because it fails to properly parse Internet Printing Protocol (IPP) packets. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed attacks may cause a denial-of-service condition. CUPS versions prior to 1.3.7-18 are vulnerable.

Affected Products

• Apple mac_os_x 10.5
• Apple mac_os_x 10.5.0
• Apple mac_os_x 10.5.1
• Apple mac_os_x 10.5.2
• Apple mac_os_x 10.5.3
• Apple mac_os_x 10.5.4
• Apple mac_os_x 10.5.5
• Apple mac_os_x 10.5.6
• Apple mac_os_x 10.5.7
• Apple mac_os_x 10.5.8
• Apple mac_os_x 10.6
• Apple mac_os_x 10.6.1
• Apple mac_os_x 10.6.2
• Apple mac_os_x 10.6.3
• Apple mac_os_x 10.6.4
• Apple mac_os_x_server 10.5
• Apple mac_os_x_server 10.5.0
• Apple mac_os_x_server 10.5.1
• Apple mac_os_x_server 10.5.2
• Apple mac_os_x_server 10.5.3
• Apple mac_os_x_server 10.5.4
• Apple mac_os_x_server 10.5.5
• Apple mac_os_x_server 10.5.6
• Apple mac_os_x_server 10.5.7
• Apple mac_os_x_server 10.5.8
• Apple mac_os_x_server 10.6
• Apple mac_os_x_server 10.6.1
• Apple mac_os_x_server 10.6.2
• Apple mac_os_x_server 10.6.3
• Apple mac_os_x_server 10.6.4
• Avaya aura_presence_services 6.0
• Avaya aura_session_manager 1.1
• Avaya aura_session_manager 5.2
• Avaya aura_session_manager 6.0
• Avaya aura_session_manager 6.0 SP1
• Avaya aura_system_manager 5.2
• Avaya aura_system_manager 6.0
• Avaya aura_system_manager 6.0 SP1
• Avaya aura_system_platform 1.1
• Avaya aura_system_platform 6.0
• Avaya communication_server_1000e 7.0
• Avaya communication_server_1000e 7.5
• Avaya communication_server_1000e_signaling_server 7.0
• Avaya communication_server_1000e_signaling_server 7.5
• Avaya communication_server_1000m 7.0
• Avaya communication_server_1000m 7.5
• Avaya communication_server_1000m_signaling_server 7.0
• Avaya communication_server_1000m_signaling_server 7.5
• Avaya iq 5
• Avaya iq 5.1
• Debian linux 5.0
• Debian linux 5.0 Alpha
• Debian linux 5.0 Amd64
• Debian linux 5.0 Arm
• Debian linux 5.0 Armel
• Debian linux 5.0 Hppa
• Debian linux 5.0 Ia-32
• Debian linux 5.0 Ia-64
• Debian linux 5.0 M68k
• Debian linux 5.0 Mips
• Debian linux 5.0 Mipsel
• Debian linux 5.0 Powerpc
• Debian linux 5.0 S/390
• Debian linux 5.0 Sparc
• Easy_software_products cups 1.0.4
• Easy_software_products cups 1.0.4 -8
• Easy_software_products cups 1.1.1
• Easy_software_products cups 1.1.10
• Easy_software_products cups 1.1.12
• Easy_software_products cups 1.1.13
• Easy_software_products cups 1.1.14
• Easy_software_products cups 1.1.15
• Easy_software_products cups 1.1.16
• Easy_software_products cups 1.1.17
• Easy_software_products cups 1.1.18
• Easy_software_products cups 1.1.19
• Easy_software_products cups 1.1.19 Rc5
• Easy_software_products cups 1.1.20
• Easy_software_products cups 1.1.21
• Easy_software_products cups 1.1.22
• Easy_software_products cups 1.1.22 Rc1
• Easy_software_products cups 1.1.23
• Easy_software_products cups 1.1.23 Rc1
• Easy_software_products cups 1.1.4
• Easy_software_products cups 1.1.4 -2
• Easy_software_products cups 1.1.4 -3
• Easy_software_products cups 1.1.4 -5
• Easy_software_products cups 1.1.6
• Easy_software_products cups 1.1.7
• Easy_software_products cups 1.2.10
• Easy_software_products cups 1.2.12
• Easy_software_products cups 1.2.2
• Easy_software_products cups 1.2.4
• Easy_software_products cups 1.2.8
• Easy_software_products cups 1.2.9
• Easy_software_products cups 1.3.10
• Easy_software_products cups 1.3.2
• Easy_software_products cups 1.3.3
• Easy_software_products cups 1.3.5
• Easy_software_products cups 1.3.6
• Easy_software_products cups 1.3.7
• Easy_software_products cups 1.3.7-17
• Gentoo linux
• Mandriva corporate_server 4.0
• Mandriva corporate_server 4.0.0 X86 64
• Mandriva enterprise_server 5
• Mandriva enterprise_server 5 X86 64
• Mandriva linux_mandrake 2009.0
• Mandriva linux_mandrake 2009.0 X86 64
• Mandriva linux_mandrake 2010.0
• Mandriva linux_mandrake 2010.0 X86 64
• Mandriva linux_mandrake 2010.1
• Mandriva linux_mandrake 2010.1 X86 64
• Red_hat enterprise_linux 5 Server
• Red_hat enterprise_linux_desktop 5 Client
• Red_hat enterprise_linux_desktop_workstation 5 Client
• Red_hat fedora 12
• Red_hat fedora 13
• Red_hat fedora 14
• Slackware linux 12.0
• Slackware linux 12.1
• Slackware linux 12.2
• Slackware linux 13.0
• Slackware linux 13.0 X86 64
• Slackware linux 13.1
• Slackware linux 13.1 X86 64
• Slackware linux -Current
• Slackware linux X86 64 -Current
• Sun solaris 10 Sparc
• Sun solaris 10 X86
• Sun solaris 11 Express
• Suse opensuse 11.1
• Suse opensuse 11.2
• Suse opensuse 11.3
• Suse suse_linux_enterprise 10 SP3
• Suse suse_linux_enterprise 11
• Suse suse_linux_enterprise 11 SP1
• Suse suse_linux_enterprise_server 9
• Ubuntu ubuntu_linux 10.04 Amd64
• Ubuntu ubuntu_linux 10.04 ARM
• Ubuntu ubuntu_linux 10.04 I386
• Ubuntu ubuntu_linux 10.04 Powerpc
• Ubuntu ubuntu_linux 10.04 Sparc
• Ubuntu ubuntu_linux 10.10 amd64
• Ubuntu ubuntu_linux 10.10 ARM
• Ubuntu ubuntu_linux 10.10 i386
• Ubuntu ubuntu_linux 10.10 powerpc
• Ubuntu ubuntu_linux 6.06 LTS Amd64
• Ubuntu ubuntu_linux 6.06 LTS I386
• Ubuntu ubuntu_linux 6.06 LTS Powerpc
• Ubuntu ubuntu_linux 6.06 LTS Sparc
• Ubuntu ubuntu_linux 8.04 LTS Amd64
• Ubuntu ubuntu_linux 8.04 LTS I386
• Ubuntu ubuntu_linux 8.04 LTS Lpia
• Ubuntu ubuntu_linux 8.04 LTS Powerpc
• Ubuntu ubuntu_linux 8.04 LTS Sparc
• Ubuntu ubuntu_linux 9.10 Amd64
• Ubuntu ubuntu_linux 9.10 ARM
• Ubuntu ubuntu_linux 9.10 I386
• Ubuntu ubuntu_linux 9.10 Lpia
• Ubuntu ubuntu_linux 9.10 Powerpc
• Ubuntu ubuntu_linux 9.10 Sparc

References

• BugTraq: 44530
• CVE: CVE-2010-2941