CVE-2010-0540 - OpenCVE

Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers to hijack the authentication of administrators for requests that change settings.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:S/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Apple	Mac Os X Mac Os X Server

Configuration 1 [-]

OR	cpe:2.3:o:apple:mac_os_x:10.5.8:::::::*
	cpe:2.3:o:apple:mac_os_x:10.6.0:::::::*
	cpe:2.3:o:apple:mac_os_x:10.6.1:::::::*
	cpe:2.3:o:apple:mac_os_x:10.6.2:::::::*
	cpe:2.3:o:apple:mac_os_x:10.6.3:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.5.8:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.6.0:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.6.1:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.6.2:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.6.3:::::::*

References

Link	Resource
http://cups.org/articles.php?L596
http://cups.org/str.php?L3498
http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html	Vendor Advisory
http://secunia.com/advisories/40220	Vendor Advisory
http://secunia.com/advisories/43521
http://security.gentoo.org/glsa/glsa-201207-10.xml
http://support.apple.com/kb/HT4188	Patch Vendor Advisory
http://www.debian.org/security/2011/dsa-2176
http://www.mandriva.com/security/advisories?name=MDVSA-2010:232
http://www.mandriva.com/security/advisories?name=MDVSA-2010:233
http://www.mandriva.com/security/advisories?name=MDVSA-2010:234
http://www.securityfocus.com/bid/40871	Patch
http://www.securitytracker.com/id?1024122
http://www.vupen.com/english/advisories/2010/1481	Patch Vendor Advisory
http://www.vupen.com/english/advisories/2011/0535
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10382

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: apple

Published: 2010-06-17T16:00:00

Updated: 2017-09-18T12:57:01

Reserved: 2010-02-03T00:00:00

Link: CVE-2010-0540

JSON object: View

NVD Information

Status : Modified

Published: 2010-06-17T16:30:01.327

Modified: 2017-09-19T01:30:26.470

Link: CVE-2010-0540

JSON object: View

Redhat Information

No data.

CWE

CWE-352

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-06-15T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers to hijack the authentication of administrators for requests that change settings."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-18T12:57:01", "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple"}, "references": [{"name": "APPLE-SA-2010-06-15-1", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html"}, {"name": "MDVSA-2010:234", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:234"}, {"name": "ADV-2010-1481", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2010/1481"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://cups.org/articles.php?L596"}, {"name": "40871", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/40871"}, {"name": "MDVSA-2010:232", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:232"}, {"name": "DSA-2176", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2011/dsa-2176"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.apple.com/kb/HT4188"}, {"name": "GLSA-201207-10", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"}, {"name": "ADV-2011-0535", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0535"}, {"name": "40220", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/40220"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://cups.org/str.php?L3498"}, {"name": "MDVSA-2010:233", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:233"}, {"name": "oval:org.mitre.oval:def:10382", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10382"}, {"name": "43521", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/43521"}, {"name": "1024122", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1024122"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "product-security@apple.com", "ID": "CVE-2010-0540", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers to hijack the authentication of administrators for requests that change settings."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "APPLE-SA-2010-06-15-1", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html"}, {"name": "MDVSA-2010:234", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:234"}, {"name": "ADV-2010-1481", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/1481"}, {"name": "http://cups.org/articles.php?L596", "refsource": "CONFIRM", "url": "http://cups.org/articles.php?L596"}, {"name": "40871", "refsource": "BID", "url": "http://www.securityfocus.com/bid/40871"}, {"name": "MDVSA-2010:232", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:232"}, {"name": "DSA-2176", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2011/dsa-2176"}, {"name": "http://support.apple.com/kb/HT4188", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT4188"}, {"name": "GLSA-201207-10", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"}, {"name": "ADV-2011-0535", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0535"}, {"name": "40220", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/40220"}, {"name": "http://cups.org/str.php?L3498", "refsource": "CONFIRM", "url": "http://cups.org/str.php?L3498"}, {"name": "MDVSA-2010:233", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:233"}, {"name": "oval:org.mitre.oval:def:10382", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10382"}, {"name": "43521", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43521"}, {"name": "1024122", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1024122"}]}}}}, "cveMetadata": {"assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "assignerShortName": "apple", "cveId": "CVE-2010-0540", "datePublished": "2010-06-17T16:00:00", "dateReserved": "2010-02-03T00:00:00", "dateUpdated": "2017-09-18T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*", "matchCriteriaId": "1335E35A-D381-4056-9E78-37BC6DF8AD98", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "3C69DEE9-3FA5-408E-AD27-F5E7043F852A", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "D25D1FD3-C291-492C-83A7-0AFAFAADC98D", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "5B565F77-C310-4B83-B098-22F9489C226C", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "546EBFC8-79F0-42C2-9B9A-A76CA3F19470", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*", "matchCriteriaId": "82B4CD59-9F37-4EF0-BA43-427CFD6E1329", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "26E34E35-CCE9-42BE-9AFF-561D8AA90E25", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "A04FF6EE-D4DA-4D70-B0CE-154292828531", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "9425320F-D119-49EB-9265-3159070DFE93", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "F6BE138D-619B-4E44-BFB2-8DFE5F0D1E12", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers to hijack the authentication of administrators for requests that change settings."}, {"lang": "es", "value": "Una vulnerabilidad de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) en el interfaz web de CUPS en Apple Mac OS X v10.5.8 y a10.6 antes de 10.6.4, permite a atacantes remotos secuestrar la autenticaci\u00f3n de los administradores durante las peticiones de cambio la configuraci\u00f3n."}], "id": "CVE-2010-0540", "lastModified": "2017-09-19T01:30:26.470", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2010-06-17T16:30:01.327", "references": [{"source": "product-security@apple.com", "url": "http://cups.org/articles.php?L596"}, {"source": "product-security@apple.com", "url": "http://cups.org/str.php?L3498"}, {"source": "product-security@apple.com", "tags": ["Vendor Advisory"], "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html"}, {"source": "product-security@apple.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/40220"}, {"source": "product-security@apple.com", "url": "http://secunia.com/advisories/43521"}, {"source": "product-security@apple.com", "url": "http://security.gentoo.org/glsa/glsa-201207-10.xml"}, {"source": "product-security@apple.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://support.apple.com/kb/HT4188"}, {"source": "product-security@apple.com", "url": "http://www.debian.org/security/2011/dsa-2176"}, {"source": "product-security@apple.com", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:232"}, {"source": "product-security@apple.com", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:233"}, {"source": "product-security@apple.com", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2010:234"}, {"source": "product-security@apple.com", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/40871"}, {"source": "product-security@apple.com", "url": "http://www.securitytracker.com/id?1024122"}, {"source": "product-security@apple.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2010/1481"}, {"source": "product-security@apple.com", "url": "http://www.vupen.com/english/advisories/2011/0535"}, {"source": "product-security@apple.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10382"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "nvd@nist.gov", "type": "Primary"}]}