Test ID:	1.3.6.1.4.1.25623.1.0.841753
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-2144-1)
Summary:	The remote host is missing an update for the 'cups' package(s) announced via the USN-2144-1 advisory.
Description:	Summary: The remote host is missing an update for the 'cups' package(s) announced via the USN-2144-1 advisory. Vulnerability Insight: Florian Weimer discovered that the pdftoopvp filter bundled in the CUPS package incorrectly handled memory. An attacker could possibly use this issue to execute arbitrary code with the privileges of the lp user. (CVE-2013-6474, CVE-2013-6475) Florian Weimer discovered that the pdftoopvp filter bundled in the CUPS package did not restrict driver directories. An attacker could possibly use this issue to execute arbitrary code with the privileges of the lp user. (CVE-2013-6476) Affected Software/OS: 'cups' package(s) on Ubuntu 10.04. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-6474 66163 http://www.securityfocus.com/bid/66163 DSA-2875 http://www.debian.org/security/2014/dsa-2875 DSA-2876 http://www.debian.org/security/2014/dsa-2876 USN-2143-1 http://www.ubuntu.com/usn/USN-2143-1 USN-2144-1 http://www.ubuntu.com/usn/USN-2144-1 http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176 https://bugzilla.redhat.com/show_bug.cgi?id=1027548 Common Vulnerability Exposure (CVE) ID: CVE-2013-6475 66166 http://www.securityfocus.com/bid/66166 https://bugzilla.redhat.com/show_bug.cgi?id=1027550 Common Vulnerability Exposure (CVE) ID: CVE-2013-6476 https://bugzilla.redhat.com/show_bug.cgi?id=1027551
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.