CVE-2013-6476

The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.4 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:P/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
VendorProductVersion
canonicalubuntu_linux
10.04
canonicalubuntu_linux
12.04
canonicalubuntu_linux
12.10
canonicalubuntu_linux
13.10
debiandebian_linux
*
fedoraprojectfedora
*
linuxfoundationcups-filters
𝑥
≤ 1.0.46
linuxfoundationcups-filters
1.0
linuxfoundationcups-filters
1.0.1
linuxfoundationcups-filters
1.0.2
linuxfoundationcups-filters
1.0.3
linuxfoundationcups-filters
1.0.4
linuxfoundationcups-filters
1.0.5
linuxfoundationcups-filters
1.0.6
linuxfoundationcups-filters
1.0.7
linuxfoundationcups-filters
1.0.8
linuxfoundationcups-filters
1.0.9
linuxfoundationcups-filters
1.0.10
linuxfoundationcups-filters
1.0.11
linuxfoundationcups-filters
1.0.12
linuxfoundationcups-filters
1.0.13
linuxfoundationcups-filters
1.0.14
linuxfoundationcups-filters
1.0.15
linuxfoundationcups-filters
1.0.16
linuxfoundationcups-filters
1.0.17
linuxfoundationcups-filters
1.0.18
linuxfoundationcups-filters
1.0.19
linuxfoundationcups-filters
1.0.20
linuxfoundationcups-filters
1.0.21
linuxfoundationcups-filters
1.0.22
linuxfoundationcups-filters
1.0.23
linuxfoundationcups-filters
1.0.24
linuxfoundationcups-filters
1.0.25
linuxfoundationcups-filters
1.0.26
linuxfoundationcups-filters
1.0.27
linuxfoundationcups-filters
1.0.28
linuxfoundationcups-filters
1.0.29
linuxfoundationcups-filters
1.0.30
linuxfoundationcups-filters
1.0.31
linuxfoundationcups-filters
1.0.32
linuxfoundationcups-filters
1.0.33
linuxfoundationcups-filters
1.0.34
linuxfoundationcups-filters
1.0.35
linuxfoundationcups-filters
1.0.36
linuxfoundationcups-filters
1.0.37
linuxfoundationcups-filters
1.0.38
linuxfoundationcups-filters
1.0.39
linuxfoundationcups-filters
1.0.40
linuxfoundationcups-filters
1.0.41
linuxfoundationcups-filters
1.0.42
linuxfoundationcups-filters
1.0.43
linuxfoundationcups-filters
1.0.44
linuxfoundationcups-filters
1.0.45
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
cups
bullseye
2.3.3op2-3+deb11u8
fixed
bullseye (security)
2.3.3op2-3+deb11u9
fixed
bookworm
2.4.2-3+deb12u7
fixed
bookworm (security)
2.4.2-3+deb12u8
fixed
sid
2.4.10-2
fixed
trixie
2.4.10-2
fixed
cups-filters
bullseye
1.28.7-1+deb11u2
fixed
bullseye (security)
1.28.7-1+deb11u3
fixed
bookworm
1.28.17-3
fixed
bookworm (security)
1.28.17-3+deb12u1
fixed
sid
1.28.17-5
fixed
trixie
1.28.17-5
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cups
saucy
not-affected
quantal
not-affected
precise
not-affected
lucid
Fixed 1.4.3-1ubuntu1.10
released
cups-filters
saucy
Fixed 1.0.40-0ubuntu1.1
released
quantal
Fixed 1.0.24-2ubuntu0.2
released
precise
Fixed 1.0.18-0ubuntu0.2
released
lucid
dne
Common Weakness Enumeration
References
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176
http://www.debian.org/security/2014/dsa-2875
http://www.debian.org/security/2014/dsa-2876
http://www.ubuntu.com/usn/USN-2143-1
http://www.ubuntu.com/usn/USN-2144-1
https://bugzilla.redhat.com/show_bug.cgi?id=1027551
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176
http://www.debian.org/security/2014/dsa-2875
http://www.debian.org/security/2014/dsa-2876
http://www.ubuntu.com/usn/USN-2143-1
http://www.ubuntu.com/usn/USN-2144-1
https://bugzilla.redhat.com/show_bug.cgi?id=1027551