Apple cups 1.3.7/1.3.9/1.3.10/1.4.1 cupsdDoSelect resource management

| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.1 | $0-$5k | 0.00 |
Summary
A vulnerability marked as problematic has been reported in Apple cups 1.3.7/1.3.9/1.3.10/1.4.1. This vulnerability affects the function cupsdDoSelect. Performing a manipulation results in resource management.
This vulnerability is reported as CVE-2010-0302. No exploit exists.
It is suggested to upgrade the affected component.
Details
A vulnerability, which was classified as problematic, was found in Apple cups 1.3.7/1.3.9/1.3.10/1.4.1 (Printing Software). This affects the function cupsdDoSelect. The manipulation with an unknown input leads to a resource management vulnerability. CWE is classifying the issue as CWE-399. This is going to have an impact on availability. The summary by CVE is:
Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in scheduler/select.c in the scheduler in cupsd in CUPS before 1.4.4, when kqueue or epoll is used, allows remote attackers to cause a denial of service (daemon crash or hang) via a client disconnection during listing of a large number of print jobs, related to improperly maintaining a reference count. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2009-3553.
The weakness was disclosed 03/05/2010 with Red Hat (Website). The advisory is shared at rhn.redhat.com. This vulnerability is uniquely identified as CVE-2010-0302 since 01/12/2010. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. Technical details are known, but no exploit is available.
It is declared as proof-of-concept. The vulnerability scanner Nessus provides a plugin with the ID 47683 (CUPS < 1.4.4 Multiple Vulnerabilities), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Misc.. The commercial vulnerability scanner Qualys is able to test this issue with plugin 118198 (Fedora Update for CUPS (FEDORA-2010-3693)).
Upgrading to version 1.3.10 eliminates this vulnerability.
The vulnerability is also documented in the databases at X-Force (56668), Tenable (47683), SecurityFocus (BID 38510†), Secunia (SA38927†) and SecurityTracker (ID 1024124†). The entry VDB-50855 is pretty similar. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.apple.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.4VulDB Meta Temp Score: 6.1
VulDB Base Score: 5.3
VulDB Temp Score: 4.8
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.5
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Resource managementCWE: CWE-399 / CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 47683
Nessus Name: CUPS < 1.4.4 Multiple Vulnerabilities
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
OpenVAS ID: 880660
OpenVAS Name: CentOS Update for cups CESA-2010:0129 centos5 i386
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: cups 1.3.10
Timeline
01/12/2010 🔍03/03/2010 🔍
03/03/2010 🔍
03/05/2010 🔍
03/05/2010 🔍
03/09/2010 🔍
03/12/2010 🔍
06/18/2010 🔍
07/08/2010 🔍
03/18/2015 🔍
05/01/2026 🔍
Sources
Vendor: apple.comAdvisory: rhn.redhat.com
Organization: Red Hat
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2010-0302 (🔍)
GCVE (CVE): GCVE-0-2010-0302
GCVE (VulDB): GCVE-100-52077
OVAL: 🔍
X-Force: 56668
SecurityFocus: 38510 - CUPS File Descriptors Handling Use-After-Free Remote Denial Of Service Vulnerability
Secunia: 38927 - Fedora update for cups, Less Critical
SecurityTracker: 1024124 - CUPS Use After Free in cupsdDoSelect() Lets Remote Users Deny Service
Vulnerability Center: 24980 - CUPS cupsdDoSelect Function Vulnerability Allows Remote Attackers to Cause DoS, Medium
Vupen: ADV-2010-1481
See also: 🔍
Entry
Created: 03/18/2015 15:15Updated: 05/01/2026 20:36
Changes: 03/18/2015 15:15 (67), 02/21/2017 17:27 (18), 09/05/2021 07:18 (3), 05/01/2026 20:36 (26)
Complete: 🔍
Cache ID: 216::103
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
No comments yet. Languages: en.
Please log in to comment.