• info
• discussion
• exploit
• solution
• references

CUPS Web Interface Cross Site Scripting Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.


MandrakeSoft Enterprise Server 5 x86_64

• Mandriva cups-1.3.10-0.7mdvmes5.2.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva cups-common-1.3.10-0.7mdvmes5.2.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva cups-serial-1.3.10-0.7mdvmes5.2.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva lib64cups2-1.3.10-0.7mdvmes5.2.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva lib64cups2-devel-1.3.10-0.7mdvmes5.2.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva php-cups-1.3.10-0.7mdvmes5.2.x86_64.rpm
  http://www.mandriva.com/en/downloads/

MandrakeSoft Enterprise Server 5

• Mandriva cups-1.3.10-0.7mdvmes5.2.i586.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva cups-common-1.3.10-0.7mdvmes5.2.i586.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva cups-serial-1.3.10-0.7mdvmes5.2.i586.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva libcups2-1.3.10-0.7mdvmes5.2.i586.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva libcups2-devel-1.3.10-0.7mdvmes5.2.i586.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva php-cups-1.3.10-0.7mdvmes5.2.i586.rpm
  http://www.mandriva.com/en/downloads/

Mandriva Business Server 1 X86 64

• Mandriva cups-1.5.4-1.4.mbs1.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva cups-common-1.5.4-1.4.mbs1.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva cups-serial-1.5.4-1.4.mbs1.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva lib64cups2-1.5.4-1.4.mbs1.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva lib64cups2-devel-1.5.4-1.4.mbs1.x86_64.rpm
  http://www.mandriva.com/en/downloads/


• Mandriva php-cups-1.5.4-1.4.mbs1.x86_64.rpm
  http://www.mandriva.com/en/downloads/