CVE-2009-2820 : The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly h

The web interface in CUPS before 1.4.2, as used on Apple Mac OS X before 10.6.2 and other platforms, does not properly handle (1) HTTP headers and (2) HTML templates, which allows remote attackers to conduct cross-site scripting (XSS) attacks and HTTP response splitting attacks via vectors related to (a) the product's web interface, (b) the configuration of the print system, and (c) the titles of printed jobs, as demonstrated by an XSS attack that uses the kerberos parameter to the admin program, and leverages attribute injection and HTTP Parameter Pollution (HPP) issues.

Published 2009-11-10 19:30:01

Updated 2017-09-19 01:29:20

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Threat overview for CVE-2009-2820

Top countries where our scanners detected CVE-2009-2820

Top open port discovered on systems with this issue 548

IPs affected by CVE-2009-2820 94

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2009-2820!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2009-2820

Probability of exploitation activity in the next 30 days: 0.89%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 81 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2009-2820

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2009-2820

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2009-2820

http://www.vupen.com/english/advisories/2009/3184

Webmail: access your OVH emails on ovhcloud.com | OVHcloud

CVEs referencing this url
http://www.cups.org/documentation.php/relnotes.html

Page Has Moved - CUPS.org

CVEs referencing this url
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021115.1-1
http://support.apple.com/kb/HT3937

Page Not Found - Apple Support
Patch;Vendor Advisory

CVEs referencing this url
http://www.redhat.com/support/errata/RHSA-2009-1595.html

Support

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDVSA-2010:072

mandriva.com

CVEs referencing this url
http://www.securityfocus.com/bid/36956

Patch

CVEs referencing this url
http://www.cups.org/str.php?L3367
http://www.cups.org/articles.php?L590
http://www.mandriva.com/security/advisories?name=MDVSA-2010:073

mandriva.com

CVEs referencing this url
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html

Vendor Advisory

CVEs referencing this url
https://bugzilla.redhat.com/show_bug.cgi?id=529833
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9153

Products affected by CVE-2009-2820