Detections
Analytics
Amazon Linux AMI : cups (ALAS-2015-559)
critical Nessus Plugin ID 84595
Language:
Synopsis
The remote Amazon Linux AMI host is missing a security update.Description
A string reference count bug was found in cupsd, causing premature freeing of string objects. An attacker can submit a malicious print job that exploits this flaw to dismantle ACLs protecting privileged operations, allowing a replacement configuration file to be uploaded which in turn allows the attacker to run arbitrary code in the CUPS server (CVE-2015-1158)A cross-site scripting flaw was found in the cups web templating engine. An attacker could use this flaw to bypass the default configuration settings that bind the CUPS scheduler to the 'localhost' or loopback interface. (CVE-2015-1159)
An integer overflow leading to a heap-based buffer overflow was found in the way cups handled compressed raster image files. An attacker could create a specially crafted image file, which when passed via the cups Raster filter, could cause the cups filter to crash.
(CVE-2014-9679)
Solution
Run 'yum update cups' to update your system.See Also
Plugin Details
Severity: Critical
ID: 84595
File Name: ala_ALAS-2015-559.nasl
Version: 2.2
Type: local
Agent: unix
Published: 7/8/2015
Updated: 4/18/2018
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:amazon:linux:cups-libs, p-cpe:/a:amazon:linux:cups-php, p-cpe:/a:amazon:linux:cups-debuginfo, p-cpe:/a:amazon:linux:cups-lpd, p-cpe:/a:amazon:linux:cups-devel, cpe:/o:amazon:linux, p-cpe:/a:amazon:linux:cups
Required KB Items: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list
Patch Publication Date: 7/7/2015