CVE-2008-5183
HIGHCUPS <1.3.9 - DoS
Title source: llmDescription
cupsd in CUPS 1.3.9 and earlier allows local users, and possibly remote attackers, to cause a denial of service (daemon crash) by adding a large number of RSS Subscriptions, which triggers a NULL pointer dereference. NOTE: this issue can be triggered remotely by leveraging CVE-2008-5184.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Adrian _pagvac_ Pastor · htmldoslinux
https://www.exploit-db.com/exploits/7150
References (21)
... and 1 more
Scores
CVSS v3
7.5
EPSS
0.0464
EPSS Percentile
89.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (6)
apple/cups
< 1.3.9
apple/mac_os_x
< 10.5.6
apple/mac_os_x_server
< 10.5.6
debian/debian_linux
5.0
debian/debian_linux
6.0
opensuse/opensuse
11.0
Published
Nov 21, 2008
Tracked Since
Feb 18, 2026