Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Arbitrary File Creation in PaperCut NG/MF Web Print leading to a Denial of Service attack
Vulnerability Description
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack. Note: This CVE has been split from CVE-2024-4712.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
PaperCut NG/MF 安全漏洞
Vulnerability Description
PaperCut NG/MF是PaperCut公司的一个打印管理系统。 PaperCut NG/MF存在安全漏洞,该漏洞源于错误地创建不存在的文件,从而淹没磁盘空间并导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A