Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read portions of arbitrary files via a modified HOME environment variable and a symlink attack involving .cups/client.conf.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple CUPS 安全漏洞
Vulnerability Description
Apple CUPS(Common Unix Printing System)是美国苹果(Apple)公司的一套开源的用于OS X和类Unix系统的打印系统。该系统基于Internet打印协议(IPP),提供大多数PostScript和raster打印机服务。 Apple CUPS 1.7.1之前的版本中存在安全漏洞,该漏洞源于lppasswd应用程序的配置中存在错误。当以‘setuid’权限运行时,本地攻击者可通过修改HOME环境变量并在‘.cups/client.conf’文件上实施符号链接攻击,利用
CVSS Information
N/A
Vulnerability Type
N/A