Linux

6208 readers

440 users here now

A community for everything relating to the GNU/Linux operating system

Also check out:

Original icon base courtesy of [email protected] and The GIMP

founded 2 years ago

MODERATORS

[email protected]

Critical Unauthenticated RCE Flaws in CUPS Printing Systems (blog.qualys.com)

submitted 5 months ago by [email protected] to c/[email protected]

9 comments fedilink hide all child comments

cross-posted from: https://ani.social/post/6217644

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 2 points 5 months ago* (last edited 5 months ago)

Either of these commands will reveal processes listening on the port that's vulnerable by default:

$ sudo lsof -i :631

$ sudo fuser -v 631/tcp 631/udp

The wording of this post gives me the impression that it could exploited even if you don't have any such processes, if your system contacts a malicious or compromised print server. I would avoid browsing or using printers on unsafe networks until this is patched.

The port 631 process just makes it worse, by allowing someone else to initiate that contact remotely.