Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2012-5519
Description:CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface.
Test IDs: 1.3.6.1.4.1.25623.1.0.892600   1.3.6.1.4.1.25623.1.0.881674   1.3.6.1.4.1.25623.1.0.870948   1.3.6.1.4.1.25623.1.0.881616   1.3.6.1.4.1.25623.1.0.850659   1.3.6.1.4.1.25623.1.0.120554   1.3.6.1.4.1.25623.1.0.121169   1.3.6.1.4.1.25623.1.0.123686   1.3.6.1.4.1.25623.1.0.831756   1.3.6.1.4.1.25623.1.0.841241   1.3.6.1.4.1.25623.1.0.702600   1.3.6.1.4.1.25623.1.1.4.2014.1023.1   1.3.6.1.4.1.25623.1.1.4.2013.1655.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-5519
http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html
BugTraq ID: 56494
http://www.securityfocus.com/bid/56494
http://www.openwall.com/lists/oss-security/2012/11/10/5
http://www.openwall.com/lists/oss-security/2012/11/11/2
http://www.openwall.com/lists/oss-security/2012/11/11/5
RedHat Security Advisories: RHSA-2013:0580
http://rhn.redhat.com/errata/RHSA-2013-0580.html
SuSE Security Announcement: SUSE-SU-2015:1041 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00003.html
SuSE Security Announcement: SUSE-SU-2015:1044 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00006.html
SuSE Security Announcement: openSUSE-SU-2015:1056 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00010.html
http://www.ubuntu.com/usn/USN-1654-1
XForce ISS Database: cups-systemgroup-priv-esc(80012)
https://exchange.xforce.ibmcloud.com/vulnerabilities/80012




© 1998-2021 E-Soft Inc. All rights reserved.