Security Advisory

CVE-2010-2941

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-11-05 16:28:00

Last updated 2024-08-07 02:55:45

Assigner redhat

State PUBLISHED

Description

ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.

← Browse all CVEs View on cve.org ↗