Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2005-2874

Disclosure Date: September 13, 2005
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The is_path_absolute function in scheduler/client.c for the daemon in CUPS before 1.1.23 allows remote attackers to cause a denial of service (CPU consumption by tight loop) via a “....” URL in an HTTP request.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

General Information

Technical Analysis