CVE-2004-0558

CUPS < 1.1.21 - Denial of Service via UDP Packet to IPP Port

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2004-0558. PoCs published by Alvaro Martinez Echevarria, fibonascii.

AI-analyzed exploit summary The provided code is an nmap command to scan for CUPS (Common Unix Printing System) running on UDP port 631, which is vulnerable to a denial of service (DoS) via a zero-length UDP packet. This is not a full exploit but a detection method for the vulnerability.

Description

The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port.

Exploits (2)

exploitdb SCANNER VERIFIED
by Alvaro Martinez Echevarria · textdoslinux
https://www.exploit-db.com/exploits/24599

The provided code is an nmap command to scan for CUPS (Common Unix Printing System) running on UDP port 631, which is vulnerable to a denial of service (DoS) via a zero-length UDP packet. This is not a full exploit but a detection method for the vulnerability.

Classification
Scanner 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: CUPS (Common Unix Printing System)
No auth needed
Prerequisites: nmap installed · network access to target port 631/UDP
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC
by fibonascii · poc
https://github.com/fibonascii/CVE-2004-0558

This repository contains a functional Python exploit for CVE-2004-0558, a DoS vulnerability in CUPS 1.1.x. The exploit sends a zero-length UDP packet to trigger the vulnerability, causing a denial of service.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: CUPS 1.1.x
No auth needed
Prerequisites: Network access to the target CUPS server · Python environment
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

References (16)

Core 16
Core References
Various Sources x_refsource_misc
https://github.com/fibonascii/CVE-2004-0558
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11732
Various Sources vendor-advisory x_refsource_suse
http://www.suse.com/de/security/2004_31_cups.html
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000757.1-1
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/11183
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57646-1
Patch vendor-advisory x_refsource_fedora
https://bugzilla.fedora.us/show_bug.cgi?id=2072
Patch, Vendor Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2004/dsa-545
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17389
Vendor Advisory vendor-advisory x_refsource_trustix
http://www.trustix.org/errata/2004/0047/
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html
Mailing List vendor-advisory x_refsource_sco
http://marc.info/?l=bugtraq&m=109760654431316&w=2
Vendor Advisory vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000872
Various Sources vendor-advisory x_refsource_mandrake
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:097
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1
Patch, Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2004-449.html

Scores

EPSS 0.2679
EPSS Percentile 97.8%

Details

Status published
Products (1)
easy_software_products/cups < 1.1.21
Published Sep 28, 2004
Tracked Since Feb 18, 2026