What is the severity of CVE-2009-0164?

CVE-2009-0164 has a medium severity rating due to its potential to facilitate DNS rebinding attacks.

How do I fix CVE-2009-0164?

To fix CVE-2009-0164, ensure that you update to the latest version of CUPS that resolves this vulnerability.

Which versions of CUPS are affected by CVE-2009-0164?

CVE-2009-0164 affects multiple versions of CUPS, including 1.1.20, 1.1.5-2, 1.1.14, and several others.

What types of attacks can CVE-2009-0164 enable?

CVE-2009-0164 can potentially enable DNS rebinding attacks by allowing unauthorized access to the CUPS daemon.

Is there a workaround for CVE-2009-0164 if I cannot update immediately?

A potential workaround for CVE-2009-0164 involves restricting access to the CUPS daemon and configuring firewall rules.

Vulnerability/
CVE-2009-0164

medium

6.4

CWE

17/3/2009

24/4/2009

25/2/2021

CVE-2009-0164: Input Validation

First published: Tue Mar 17 2009(Updated: )

Aaron Sigel of Apple Product Security reported that CUPS did not check Host: HTTP header in the connections to the daemon. This insufficient checking may be of an advantage as part of some other attack, e.g. DNS rebinding attack (however, for such attack, user's web browser or browser plugin must be prone to the DNS rebinding attack). Upstream patch adds check for the Host: header used in clients' requests. It also introduced ServerAlias configuration directive, that must be used to allow clients to use additional valid host names besides those set has hostname or hostname's aliases.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
CUPS	=1.1.20
CUPS	=1.1.5-2
CUPS	=1.1.14
CUPS	=1.3-rc2
CUPS	=1.1.6-1
CUPS	=1.1.18
CUPS	=1.1.12
CUPS	=1.1.5-1
CUPS	=1.3.3
CUPS	=1.1.22
CUPS	=1.2.0
CUPS	=1.1.16
CUPS	=1.3.1
CUPS	=1.1.23-rc1
CUPS	=1.1.20-rc1
CUPS	=1.1.15
CUPS	=1.1.17
CUPS	=1.1.20-rc6
CUPS	=1.2.4
CUPS	=1.1.19-rc1
CUPS	=1.3.2
CUPS	=1.1.22-rc1
CUPS	=1.1.7
CUPS	=1.2-rc2
CUPS	=1.1.6-2
CUPS	=1.3-b1
CUPS	=1.1.3
CUPS	=1.2.3
CUPS	=1.1.21
CUPS	=1.2.9
CUPS	=1.2.10
CUPS	=1.1.4
CUPS	=1.1.23
CUPS	=1.2.6
CUPS	=1.2-b1
CUPS	=1.3.8
CUPS	=1.1.20-rc4
CUPS	=1.1.19
CUPS	=1.1
CUPS	=1.3.4
CUPS	=1.1.8
CUPS	=1.1.5
CUPS	=1.2.1
CUPS	=1.2-rc3
CUPS	=1.1.2
CUPS	=1.1.13
CUPS	=1.1.19-rc4
CUPS	=1.1.9-1
CUPS	=1.2.12
CUPS	=1.1.21-rc2
CUPS	=1.2-b2
CUPS	=1.2.7
CUPS	=1.1.6-3
CUPS	=1.1.20-rc5
CUPS	=1.1.9
CUPS	=1.3.7
CUPS	=1.1.19-rc5
CUPS	=1.2-rc1
CUPS	<=1.3.9
CUPS	=1.1.1
CUPS	=1.2.8
CUPS	=1.2.2
CUPS	=1.1.10
CUPS	=1.2.11
CUPS	=1.1.22-rc2
CUPS	=1.1.21-rc1
CUPS	=1.3-rc1
CUPS	=1.1.11
CUPS	=1.1.19-rc3
CUPS	=1.1.6
CUPS	=1.1.10-1
CUPS	=1.3.0
CUPS	=1.3.5
CUPS	=1.3.6
CUPS	=1.1.20-rc2
CUPS	=1.1.20-rc3
CUPS	=1.2.5
CUPS	=1.1.19-rc2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-0164?
CVE-2009-0164 has a medium severity rating due to its potential to facilitate DNS rebinding attacks.
How do I fix CVE-2009-0164?
To fix CVE-2009-0164, ensure that you update to the latest version of CUPS that resolves this vulnerability.
Which versions of CUPS are affected by CVE-2009-0164?
CVE-2009-0164 affects multiple versions of CUPS, including 1.1.20, 1.1.5-2, 1.1.14, and several others.
What types of attacks can CVE-2009-0164 enable?
CVE-2009-0164 can potentially enable DNS rebinding attacks by allowing unauthorized access to the CUPS daemon.
Is there a workaround for CVE-2009-0164 if I cannot update immediately?
A potential workaround for CVE-2009-0164 involves restricting access to the CUPS daemon and configuring firewall rules.

collector/redhat-bugzilla
alias/CVE-2009-0164
agent/type
agent/last-modified-date
agent/first-publish-date
agent/remedy
agent/severity
agent/weakness
agent/references
agent/author
agent/description
agent/softwarecombine
agent/tags
agent/event
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apple
canonical/cups
version/cups/1.1.20
version/cups/1.1.5-2
version/cups/1.1.14
version/cups/1.3-rc2
version/cups/1.1.6-1
version/cups/1.1.18
version/cups/1.1.12
version/cups/1.1.5-1
version/cups/1.3.3
version/cups/1.1.22
version/cups/1.2.0
version/cups/1.1.16
version/cups/1.3.1
version/cups/1.1.23-rc1
version/cups/1.1.20-rc1
version/cups/1.1.15
version/cups/1.1.17
version/cups/1.1.20-rc6
version/cups/1.2.4
version/cups/1.1.19-rc1
version/cups/1.3.2
version/cups/1.1.22-rc1
version/cups/1.1.7
version/cups/1.2-rc2
version/cups/1.1.6-2
version/cups/1.3-b1
version/cups/1.1.3
version/cups/1.2.3
version/cups/1.1.21
version/cups/1.2.9
version/cups/1.2.10
version/cups/1.1.4
version/cups/1.1.23
version/cups/1.2.6
version/cups/1.2-b1
version/cups/1.3.8
version/cups/1.1.20-rc4
version/cups/1.1.19
version/cups/1.1
version/cups/1.3.4
version/cups/1.1.8
version/cups/1.1.5
version/cups/1.2.1
version/cups/1.2-rc3
version/cups/1.1.2
version/cups/1.1.13
version/cups/1.1.19-rc4
version/cups/1.1.9-1
version/cups/1.2.12
version/cups/1.1.21-rc2
version/cups/1.2-b2
version/cups/1.2.7
version/cups/1.1.6-3
version/cups/1.1.20-rc5
version/cups/1.1.9
version/cups/1.3.7
version/cups/1.1.19-rc5
version/cups/1.2-rc1
version/cups/1.3.9
version/cups/1.1.1
version/cups/1.2.8
version/cups/1.2.2
version/cups/1.1.10
version/cups/1.2.11
version/cups/1.1.22-rc2
version/cups/1.1.21-rc1
version/cups/1.3-rc1
version/cups/1.1.11
version/cups/1.1.19-rc3
version/cups/1.1.6
version/cups/1.1.10-1
version/cups/1.3.0
version/cups/1.3.5
version/cups/1.3.6
version/cups/1.1.20-rc2
version/cups/1.1.20-rc3
version/cups/1.2.5
version/cups/1.1.19-rc2

CVE-2009-0164: Input Validation

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-0164?

How do I fix CVE-2009-0164?

Which versions of CUPS are affected by CVE-2009-0164?

What types of attacks can CVE-2009-0164 enable?

Is there a workaround for CVE-2009-0164 if I cannot update immediately?

Company

Resources

Contact