[cups.bugs] [HIGH] STR #3183: Request refused if FQDN maps to localhost address

Michael Sweet msweet at apple.com
Tue May 5 11:37:46 PDT 2009


[STR Closed w/o Resolution]

Yes, from the original CERT issue, CUPS is vulnerable to DNS rebinding
attacks on the loopback interface out-of-the-box.

Link: http://www.cups.org/str.php?L3183
Version: 1.3.10
Fix Version: Will Not Fix





More information about the cups-devel mailing list