CVE-2024-47176

This repository contains a scanner for CVE-2024-47176, a vulnerability in cups-browsed that allows unauthenticated remote discovery of vulnerable instances via UDP port 631. The scanner sends crafted UDP packets to trigger callbacks to an HTTP server, identifying vulnerable systems.

This PoC exploits CVE-2024-47176 by creating a malicious IPP printer service that injects a reverse shell command into the FoomaticRIPCommandLine attribute. It uses Zeroconf for service discovery and tricks targets into executing arbitrary commands when processing print jobs.

This repository contains a scanner for CVE-2024-47176, which targets IPP (Internet Printing Protocol) services. The scanner checks for open IPP ports and sends UDP packets to potential targets, logging HTTP responses.

This repository contains a Go-based scanner for CVE-2024-47176, which exploits a vulnerability in CUPS (Common Unix Printing System) by sending UDP packets to trigger HTTP callbacks. It includes both a sender (`prod`) and a listener (`listen`) component to detect vulnerable CUPS instances.

This repository contains a Go-based scanner for detecting CVE-2024-47176, a vulnerability in OpenPrinting's IPP service over UDP port 631. It sends UDP packets to target IPs/CIDRs and listens for HTTP callbacks to identify vulnerable systems.

This repository contains a Python script designed to scan multiple systems for the presence of CVE-2024-47176, a vulnerability in CUPS that allows remote code execution via crafted IPP requests. The script sends UDP packets to target IPs on port 631 and checks for responses indicative of the vulnerability.

This repository contains a multi-threaded scanner for CVE-2024-47176, which targets CUPS (Common Unix Printing System) via crafted UDP packets sent to port 631. The tool checks for vulnerable instances by sending payloads and logging responses via a callback server.

The repository claims to provide an automated VirtualBox lab environment for exploiting CVE-2024-47176 (unauthenticated RCE in CUPS) but lacks actual exploit code or technical details. The README is vague and does not include any functional PoC or analysis.

This repository contains a bash script that checks for and mitigates the CUPS vulnerability (CVE-2024-47176) by disabling services and blocking port 631. It does not exploit the vulnerability but provides detection and mitigation steps.

This repository contains a scanner for CVE-2024-47176, which targets CUPS (Common UNIX Printing System) to detect vulnerable instances. The scanner checks for vulnerable CUPS versions by sending UDP packets and listening for responses.

This repository contains a Python-based exploit for CVE-2024-47176, targeting CUPS (Common UNIX Printing System) via manipulated IPP requests to achieve remote command execution. The exploit leverages the cups-browsed functionality to send malicious print jobs, potentially leading to arbitrary command execution when combined with other vulnerabilities.

This Go script checks for CVE-2024-47176 by sending UDP packets to a target IP range and listening for HTTP callbacks from vulnerable CUPS servers. It identifies machines susceptible to the cups_browsed vulnerability.

This repository contains a scanner for CVE-2024-47176, which targets a vulnerability in CUPS (Common UNIX Printing System). The script sends a UDP packet to port 631 to trigger an HTTP callback, indicating a vulnerable host.

This PoC exploits CVE-2024-47176 in the CUPS Browsd daemon, which allows remote attackers to add a printer via UDP broadcast, triggering a connection to an attacker-controlled HTTP server. The exploit demonstrates the vulnerability by sending a crafted UDP packet and logging the resulting HTTP request.

This repository contains a functional proof-of-concept exploit for CVE-2024-47176, leveraging DNS-SD (Bonjour) to advertise a malicious IPP printer service. The exploit injects a crafted PPD file via foomatic-rip to achieve remote code execution on vulnerable CUPS installations.

This Metasploit module scans for CUPS version and kernel information by hosting an HTTP server and analyzing User-Agent strings from incoming requests. It reports the gathered information but does not exploit a vulnerability for RCE or other offensive actions.

This Metasploit module exploits multiple CUPS vulnerabilities (CVE-2024-47076, CVE-2024-47175, CVE-2024-47177, CVE-2024-47176) to achieve remote code execution via a malicious printer advertisement on the LAN. It uses mDNS and IPP protocols to trigger payload execution when a victim sends a print job.