The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2014-03-14T15:00:00
Updated: 2014-03-14T14:57:00
Reserved: 2013-11-04T00:00:00
Link: CVE-2013-6476
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-03-14T15:55:05.557
Modified: 2014-03-17T13:10:12.583
Link: CVE-2013-6476
JSON object: View
Redhat Information
No data.
CWE