Security Advisory

CVE-2010-2432

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-06-22 20:24:00

Last updated 2024-08-07 02:32:16

Assigner mitre

State PUBLISHED

Description

The cupsDoAuthentication function in auth.c in the client in CUPS before 1.4.4, when HAVE_GSSAPI is omitted, does not properly handle a demand for authorization, which allows remote CUPS servers to cause a denial of service (infinite loop) via HTTP_UNAUTHORIZED responses.

← Browse all CVEs View on cve.org ↗