Arbitrary Command Execution Vulnerability in foomatic-rip and foomatic-filters

CVE-2015-8327 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job.

Learn more about our Cis Benchmark Audit For Print Devices.