What is the severity of CVE-2013-6473?

CVE-2013-6473 is classified as a high severity vulnerability due to its potential for remote code execution.

How do I fix CVE-2013-6473?

To fix CVE-2013-6473, upgrade cups-filters to version 1.0.47 or later.

What types of attacks can exploit CVE-2013-6473?

CVE-2013-6473 can be exploited by attacking through specially crafted URF files that trigger heap-based buffer overflows.

Which versions of cups-filters are affected by CVE-2013-6473?

CVE-2013-6473 affects versions of cups-filters prior to 1.0.47.

What is the impact of exploiting CVE-2013-6473?

Exploiting CVE-2013-6473 can lead to arbitrary code execution on affected systems.

Vulnerability/
CVE-2013-6473

medium

6.8

CWE

119

7/11/2013

14/3/2014

6/8/2024

CVE-2013-6473: Buffer Overflow

First published: Thu Nov 07 2013(Updated: )

Multiple heap-based buffer overflows in the urftopdf filter in cups-filters 1.0.25 before 1.0.47 allow remote attackers to execute arbitrary code via a large (1) page or (2) line in a URF file.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
debian/cups-filters		1.28.7-1+deb11u2 1.28.17-3 1.28.17-4.1
Ubuntu	=13.10
CUPS Filters	=1.0.25
CUPS Filters	=1.0.26
CUPS Filters	=1.0.27
CUPS Filters	=1.0.28
CUPS Filters	=1.0.29
CUPS Filters	=1.0.30
CUPS Filters	=1.0.31
CUPS Filters	=1.0.32
CUPS Filters	=1.0.33
CUPS Filters	=1.0.34
CUPS Filters	=1.0.35
CUPS Filters	=1.0.36
CUPS Filters	=1.0.37
CUPS Filters	=1.0.38
CUPS Filters	=1.0.39
CUPS Filters	=1.0.40
CUPS Filters	=1.0.41
CUPS Filters	=1.0.42
CUPS Filters	=1.0.43
CUPS Filters	=1.0.44
CUPS Filters	=1.0.45
CUPS Filters	=1.0.46

Remedy

http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7175

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6473?
CVE-2013-6473 is classified as a high severity vulnerability due to its potential for remote code execution.
How do I fix CVE-2013-6473?
To fix CVE-2013-6473, upgrade cups-filters to version 1.0.47 or later.
What types of attacks can exploit CVE-2013-6473?
CVE-2013-6473 can be exploited by attacking through specially crafted URF files that trigger heap-based buffer overflows.
Which versions of cups-filters are affected by CVE-2013-6473?
CVE-2013-6473 affects versions of cups-filters prior to 1.0.47.
What is the impact of exploiting CVE-2013-6473?
Exploiting CVE-2013-6473 can lead to arbitrary code execution on affected systems.

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/references
agent/author
agent/remedy
agent/description
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2013-6473
collector/security-tracker-debian
source/Debian
agent/software-canonical-lookup
agent/weakness
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
package-manager/debian
vendor/canonical
canonical/ubuntu
version/ubuntu/13.10
vendor/linuxfoundation
canonical/cups filters
version/cups filters/1.0.25
version/cups filters/1.0.26
version/cups filters/1.0.27
version/cups filters/1.0.28
version/cups filters/1.0.29
version/cups filters/1.0.30
version/cups filters/1.0.31
version/cups filters/1.0.32
version/cups filters/1.0.33
version/cups filters/1.0.34
version/cups filters/1.0.35
version/cups filters/1.0.36
version/cups filters/1.0.37
version/cups filters/1.0.38
version/cups filters/1.0.39
version/cups filters/1.0.40
version/cups filters/1.0.41
version/cups filters/1.0.42
version/cups filters/1.0.43
version/cups filters/1.0.44
version/cups filters/1.0.45
version/cups filters/1.0.46