CVE-2009-0577

Currently unrated

Key Information:

Vendor: Apple
Status: Cups
Vendor: CVE Published:; 20 February 2009

Summary

Integer overflow in the WriteProlog function in texttops in CUPS 1.1.17 on Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to execute arbitrary code via a crafted PostScript file that triggers a heap-based buffer overflow. NOTE: this issue exists because of an incorrect fix for CVE-2008-3640.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/48977

vdb-entryx_refsource_XF

http://secunia.com/advisories/33995

third-party-advisoryx_refsource_SECUNIA

http://support.avaya.com/elmodocs2/security/ASA-2009-064.htm

x_refsource_CONFIRM

Timeline

Vulnerability published
Feb 20, 2009
Vulnerability Reserved
Feb 13, 2009