Incomplete Fix for Symlink Attack in CUPS 1.7.4 Allows Local Users to Read Arbitrary Files

Incomplete Fix for Symlink Attack in CUPS 1.7.4 Allows Local Users to Read Arbitrary Files

CVE-2014-5029 · LOW Severity

AV:L/AC:M/AU:S/C:P/I:N/A:N

The web interface in CUPS 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/ and language[0] set to null. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3537.

Learn more about our Web App Pen Testing.