Authorization Handling Flaw in CUPS Affects Users
CVE-2010-2432

Currently unrated

Key Information:

Vendor

Apple
Status
Cups
Vendor
CVE Published:
22 June 2010

What is CVE-2010-2432?

The cupsDoAuthentication function in CUPS prior to version 1.4.4 contains a flaw related to authorization management when the HAVE_GSSAPI directive is omitted. This vulnerability allows remote CUPS servers to exploit the denial of service condition by issuing HTTP_UNAUTHORIZED responses, potentially leading to an infinite loop situation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://cups.org/str.php?L3518
x_refsource_CONFIRM
http://cups.org/articles.php?L596
x_refsource_CONFIRM
http://www.debian.org/security/2011/dsa-2176
vendor-advisoryx_refsource_DEBIAN

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.