Hard X-ray Male 🇺🇸🇺🇦🐊🦉🌊💙Oct 26, 2024
QOTD: [That] maybe a good thing to say if you want to be a #TikTok influencer but not if you want to be known for computer security work. #CUPS #cupsd #cybersecurity #Linux #infosec

The CUPS Vulnerability
The CUPS Vulnerability

The Announcement Late last month there was an announcement of a “severity 9.9 vulnerability” allowing remote code execution that affects “all GNU/Linux systems (plus others)&#8221…

etbe - Russell Coker
Martin Boller     Sep 27, 2024

So it was "just" #CUPSD #Evilsocket found #RCE in.
Interesting work, but not the shocker announced.

https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/

Attacking UNIX Systems via CUPS, Part I

Hello friends, this is the first of two, possibly three (if and when I have time to finish the Windows research) writeups. We will start with targeting GNU/Linux systems with an RCE. As someone who’s

evilsocket
Krutonium://Sep 27, 2024

How to secure your #NixOS system against the 10/10 Severity #RCE exploit

https://gitea.krutonium.ca/Krutonium/NixOS/commit/bbcdb28a389f5b64791f25968d1323c906978f4b

#Linux #Git #CUPS #CUPSD

Disable CUPS · bbcdb28a38

NixOS

Krutonium's Forgejo Service
Bebef 🦦🇪🇺🏴‍☠️🏳️‍🌈🏳️‍⚧️🚙🐼🥦🚩🏴May 4, 2023
Das ist doch mal #homeautomation die sich lohnt. Der #CUPSd macht jetzt über einen Prehook den #Drucker an. Wenn dessen Leistungsaufnahme für 5 Minuten unter eine bestimmte Schwelle fällt, wird er wieder aus gemacht. Das wird sicher auch den #WAF gegenüber der jetzigen manuellen Lösung erhöhen. 😁 #cups
genstar.serviceApr 15, 2023

*headdesks*

>
>Request from "localhost" using invalid Host: field "cups.locsrv".
>

#CUPS #CUPSD #EtcHosts