CVE-2003-0195 - Vulnerability Details - OpenCVE

CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Redhat	Linux
Slackware	Slackware Linux

Configuration 1 [-]

OR	cpe:2.3:o:slackware:slackware_linux:8.1:::::::*
	cpe:2.3:o:slackware:slackware_linux:9.0:::::::*

Package	CPE	Advisory	Released Date
Red Hat Linux 7.3
	cpe:/o:redhat:linux:7.3	RHSA-2003:171	2003-05-27T00:00:00Z
Red Hat Linux 8.0
	cpe:/o:redhat:linux:8.0	RHSA-2003:171	2003-05-27T00:00:00Z
Red Hat Linux 9
	cpe:/o:redhat:linux:9	RHSA-2003:171	2003-05-27T00:00:00Z

References

Link	Providers
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000678
http://marc.info/?l=bugtraq&m=105427288724449&w=2
http://www.debian.org/security/2003/dsa-317
http://www.mandriva.com/security/advisories?name=MDKSA-2003:062
http://www.novell.com/linux/security/advisories/2003_028.html
http://www.redhat.com/support/errata/RHSA-2003-171.html
http://www.securityfocus.com/bid/7637
http://www.turbolinux.com/security/TLSA-2003-33.txt
https://nvd.nist.gov/vuln/detail/CVE-2003-0195
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6
https://www.cve.org/CVERecord?id=CVE-2003-0195

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2003-06-05T04:00:00

Updated: 2024-08-08T01:43:36.123Z

Reserved: 2003-04-01T00:00:00

Link: CVE-2003-0195

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2003-06-16T04:00:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2003-0195

Redhat

Severity :

Publid Date: 2003-05-27T00:00:00Z

Links: CVE-2003-0195 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-05-27T00:00:00", "descriptions": [{"lang": "en", "value": "CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20030529 [slackware-security] CUPS DoS vulnerability fixed (SSA:2003-149-01)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=105427288724449&w=2"}, {"name": "TLSA-2003-33", "tags": ["vendor-advisory", "x_refsource_TURBO"], "url": "http://www.turbolinux.com/security/TLSA-2003-33.txt"}, {"name": "MDKSA-2003:062", "tags": ["vendor-advisory", "x_refsource_MANDRAKE"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:062"}, {"name": "oval:org.mitre.oval:def:6", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6"}, {"name": "CLSA-2003:678", "tags": ["vendor-advisory", "x_refsource_CONECTIVA"], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000678"}, {"name": "7637", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/7637"}, {"name": "DSA-317", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2003/dsa-317"}, {"name": "SuSE-SA:2003:028", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2003_028.html"}, {"name": "RHSA-2003:171", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2003-171.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2003-0195", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20030529 [slackware-security] CUPS DoS vulnerability fixed (SSA:2003-149-01)", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=105427288724449&w=2"}, {"name": "TLSA-2003-33", "refsource": "TURBO", "url": "http://www.turbolinux.com/security/TLSA-2003-33.txt"}, {"name": "MDKSA-2003:062", "refsource": "MANDRAKE", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:062"}, {"name": "oval:org.mitre.oval:def:6", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6"}, {"name": "CLSA-2003:678", "refsource": "CONECTIVA", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000678"}, {"name": "7637", "refsource": "BID", "url": "http://www.securityfocus.com/bid/7637"}, {"name": "DSA-317", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2003/dsa-317"}, {"name": "SuSE-SA:2003:028", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2003_028.html"}, {"name": "RHSA-2003:171", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2003-171.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T01:43:36.123Z"}, "title": "CVE Program Container", "references": [{"name": "20030529 [slackware-security] CUPS DoS vulnerability fixed (SSA:2003-149-01)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=105427288724449&w=2"}, {"name": "TLSA-2003-33", "tags": ["vendor-advisory", "x_refsource_TURBO", "x_transferred"], "url": "http://www.turbolinux.com/security/TLSA-2003-33.txt"}, {"name": "MDKSA-2003:062", "tags": ["vendor-advisory", "x_refsource_MANDRAKE", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:062"}, {"name": "oval:org.mitre.oval:def:6", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6"}, {"name": "CLSA-2003:678", "tags": ["vendor-advisory", "x_refsource_CONECTIVA", "x_transferred"], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000678"}, {"name": "7637", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/7637"}, {"name": "DSA-317", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2003/dsa-317"}, {"name": "SuSE-SA:2003:028", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://www.novell.com/linux/security/advisories/2003_028.html"}, {"name": "RHSA-2003:171", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2003-171.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2003-0195", "datePublished": "2003-06-05T04:00:00", "dateReserved": "2003-04-01T00:00:00", "dateUpdated": "2024-08-08T01:43:36.123Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:slackware:slackware_linux:8.1:*:*:*:*:*:*:*", "matchCriteriaId": "57F41B40-75E6-45C8-A5FB-8464C0B2D064", "vulnerable": true}, {"criteria": "cpe:2.3:o:slackware:slackware_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "300A6A65-05FD-401C-80F6-B5F5B1F056E0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "CUPS before 1.1.19 allows remote attackers to cause a denial of service via a partial printing request to the IPP port (631), which does not time out."}, {"lang": "es", "value": "CUPS anterior a la 1.1.19 permite que atacantes remotos causen una denegaci\u00f3n de servicio por media de una petici\u00f3n parcial de impresi\u00f3n al puerto IPP (631), que nunca finalizar\u00e1."}], "id": "CVE-2003-0195", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-06-16T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000678"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=105427288724449&w=2"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2003/dsa-317"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:062"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2003_028.html"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.redhat.com/support/errata/RHSA-2003-171.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/7637"}, {"source": "cve@mitre.org", "url": "http://www.turbolinux.com/security/TLSA-2003-33.txt"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000678"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=105427288724449&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2003/dsa-317"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2003:062"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.novell.com/linux/security/advisories/2003_028.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.redhat.com/support/errata/RHSA-2003-171.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/7637"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.turbolinux.com/security/TLSA-2003-33.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}