Nessus Plugin #14779
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[GLSA-200409-24] Foomatic: Arbitrary command execution in foomatic-rip filter
- Family:
- Gentoo Local Security Checks
- Category:
- infos
- Copyright:
- (C) 2004 Michel Arboi
- Summary:
- Foomatic: Arbitrary command execution in foomatic-rip filter
- Version:
- $Revision: 1.2 $
- Cve_id:
- CAN-2004-0801
- Bugtraq_id:
- 11184
- Xrefs:
- GLSA:200409-24
- Description:
- The remote host is affected by the vulnerability described in GLSA-200409-24
(Foomatic: Arbitrary command execution in foomatic-rip filter)
There is a vulnerability in the foomatic-filters package. This
vulnerability is due to insufficient checking of command-line parameters
and environment variables in the foomatic-rip filter.
Impact
This vulnerability may allow both local and remote attackers to execute
arbitrary commands on the print server with the permissions of the spooler
(oftentimes the "lp" user).
Workaround
There is no known workaround at this time.
References:
http://www.linuxprinting.org/pipermail/foomatic-devel/2004q3/001996.html
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0801
Solution:
All foomatic users should upgrade to the latest version:
# emerge sync
# emerge -pv ">=net-print/foomatic-3.0.2"
# emerge ">=net-print/foomatic-3.0.2"
PLEASE NOTE: You should update foomatic, instead of foomatic-filters. This
will help to ensure that all other foomatic components remain functional.
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.