Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A localhost.localdomain whitelist entry in valid_host() in scheduler/client.c in CUPS before 2.2.2 allows remote attackers to execute arbitrary IPP commands by sending POST requests to the CUPS daemon in conjunction with DNS rebinding. The localhost.localdomain name is often resolved via a DNS server (neither the OS nor the web browser is responsible for ensuring that localhost.localdomain is 127.0.0.1).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple CUPS 安全特征问题漏洞
Vulnerability Description
Apple CUPS(Common Unix Printing System)是美国苹果(Apple)公司的一套开源的用于OS X和类Unix系统的打印系统。该系统基于Internet打印协议(IPP),提供大多数PostScript和raster打印机服务。 Apple CUPS 2.2.2之前版本中的scheduler/client.c文件的‘valid_host()’函数的localhost.localdomain白名单条目存在安全特征问题漏洞。远程攻击者可利用该漏洞向CUPS守护进程发送POST请
CVSS Information
N/A
Vulnerability Type
N/A