this post was submitted on 27 Sep 2024

42 points (100.0% liked)

Linux

9040 readers

386 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev

42

Critical Unauthenticated RCE Flaws in CUPS Printing Systems (blog.qualys.com)

submitted 10 months ago by Toes@ani.social to c/linux@programming.dev

9 comments fedilink hide all child comments

cross-posted from: https://ani.social/post/6217644

you are viewing a single comment's thread
view the rest of the comments

[–] mox@lemmy.sdf.org 2 points 10 months ago* (last edited 10 months ago)

Either of these commands will reveal processes listening on the port that's vulnerable by default:

$ sudo lsof -i :631

$ sudo fuser -v 631/tcp 631/udp

The wording of this post gives me the impression that it could exploited even if you don't have any such processes, if your system contacts a malicious or compromised print server. I would avoid browsing or using printers on unsafe networks until this is patched.

The port 631 process just makes it worse, by allowing someone else to initiate that contact remotely.