Oval Definition:oval:org.opensuse.security:def:20085184
Revision Date:2015-11-16Version:1
Title:CVE-2008-5184
Description:
The web interface (cgi-bin/admin.c) in CUPS before 1.3.8 uses the guest username when a user is not logged on to the web server, which makes it easier for remote attackers to bypass intended policy and conduct CSRF attacks via the (1) add and (2) cancel RSS subscription functions.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-5184
Platform(s):openSUSE 11.0
Product(s):
Definition Synopsis
  • Release Information
  • suse110 is installed
  • AND
  • cups-client less than 1.3.7-25.4
  • OR cups-devel less than 1.3.7-25.4
  • OR cups-libs-32bit less than 1.3.7-25.4
  • OR cups-libs-64bit less than 1.3.7-25.4
  • OR cups-libs less than 1.3.7-25.4
  • OR cups less than 1.3.7-25.4
  • OR Package Information
  • suse110 is installed
  • AND
  • cups-client less than 1.3.7-25.6
  • OR cups-devel less than 1.3.7-25.6
  • OR cups-libs-32bit less than 1.3.7-25.6
  • OR cups-libs-64bit less than 1.3.7-25.6
  • OR cups-libs less than 1.3.7-25.6
  • OR cups less than 1.3.7-25.6
    • BACK