CVE-2008-5183

HIGH

CUPS < 1.3.9 - Denial of Service via RSS Subscription NULL Pointer Dereference

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5183. PoCs published by Adrian _pagvac_ Pastor.

AI-analyzed exploit summary This exploit leverages a CSRF vulnerability in CUPS to crash the daemon by sending 101 malicious requests via img tags. It targets the admin interface to trigger a denial-of-service condition.

Description

cupsd in CUPS 1.3.9 and earlier allows local users, and possibly remote attackers, to cause a denial of service (daemon crash) by adding a large number of RSS Subscriptions, which triggers a NULL pointer dereference. NOTE: this issue can be triggered remotely by leveraging CVE-2008-5184.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Adrian _pagvac_ Pastor · htmldoslinux

https://www.exploit-db.com/exploits/7150

View Code ZIP pw:eip

This exploit leverages a CSRF vulnerability in CUPS to crash the daemon by sending 101 malicious requests via img tags. It targets the admin interface to trigger a denial-of-service condition.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Common UNIX Printing System (CUPS) 1.3.7

No auth needed

Prerequisites: CUPS admin interface accessible on localhost:631 · Victim must visit the malicious HTML page

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (21)

Core 21

Core References

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/7150

Broken Link third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33937

Broken Link vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10586

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2008/11/20/1

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2008/11/19/3

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2008/11/19/4

Third Party Advisory x_refsource_confirm

http://support.apple.com/kb/HT3438

Mailing List vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2011/dsa-2176

Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1021396

Broken Link x_refsource_misc

http://www.gnucitizen.org/blog/pwning-ubuntu-via-cups/

Broken Link vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2011/0535

Broken Link vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/0422

Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/32419

Broken Link vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2008-1029.html

Broken Link third-party-advisory x_refsource_secunia

http://secunia.com/advisories/43521

Broken Link x_refsource_misc

http://lab.gnucitizen.org/projects/cups-0day

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/46684

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html

Broken Link vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2009:028

Issue Tracking x_refsource_confirm

https://bugs.launchpad.net/ubuntu/+source/cups/+bug/298241

Scores

CVSS v3 7.5

EPSS 0.0921

EPSS Percentile 94.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (6)

apple/cups < 1.3.9

apple/mac_os_x < 10.5.6

apple/mac_os_x_server < 10.5.6

debian/debian_linux 5.0

debian/debian_linux 6.0

opensuse/opensuse 11.0

Published Nov 21, 2008

Tracked Since Feb 18, 2026