CUPS open source printing system can be hacked to hijack your devices, experts warn

The Common UNIX Printing System, or CUPS, can be abused to run malicious code on vulnerable endpoints remotely, experts have warned.

CUPS is an open-source printing system developed by Apple for Unix-like operating systems, including Linux and macOS. It provides a standardized way to manage print jobs and queues, supporting both local and network printers. CUPS uses the Internet Printing Protocol (IPP) as its primary protocol, allowing seamless printer discovery and job submission across networks. It also includes a web-based interface for managing printers, print jobs, and configurations.

Cybersecurity researcher Simone Margaritelli of Evil Socket discovered a problem in the system’s ability to discover new printers. As the researcher explains, CUPS has four vulnerabilities: CVE_2024-47076, CVE-2024-47175, CVE-2024-47176, and CVE-2024-47177. These vulnerabilities, when chained together, allow threat actors to create a fake, malicious printer, and have CUPS discover it.

Roadblocks to exploitation

The moment a user tries to print something using this new device, a malicious command gets executed locally on their device.

While it sounds like a major vulnerability, Red Hat deemed it ‘important’ rather than ‘critical’, and this is mostly because there are many hoops to jump through, before the flaw can be exploited for RCE.

The first, and biggest one, is that the component named cups-browsed daemon, which looks for shared printers on the local network and enables them for printing, needs to be turned on. The researcher said that sometimes it’s turned off by default, and sometimes it’s turned on.

The second major hoop is making the victim pick the new printer that suddenly appeared out of nowhere, instead of their usual machine.

Red Hat is currently working on a fix, so a patch is not yet available. However, the easy fix is to stop the cups-browsed service from running, and to prevent it from being started on reboot.

Via BleepingComputer

More from TechRadar Pro

https://cdn.mos.cms.futurecdn.net/EPYgYybFa5sKbbZbgtVBLF-1200-80.jpg

Source link

Asus Zenbook S 14 review: the Lunar Lake laptop delivers power and beauty at a price

How to watch South Africa vs Argentina: free live streams 2024

Terramaster F8 SSD Plus NAS drive review

Fed up with macOS Sequoia’s screen recording reapproval requests? Here’s how to make them go away for good

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

People are driving through flames to escape this California wildfire

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

‘Heathers’ is still the best dark comedy about high school hell

Chappell Roan drops out of upcoming festival to prioritize health

Canada gov’t says Montreal port workers to strike at two terminals for three days By Reuters

Inflation cools to 2.2% and may be eroding Trump’s election edge

Jefferies maintains Buy on Acadia Healthcare, price target at $105 By Investing.com

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

CUPS open source printing system can be hacked to hijack your devices, experts warn

Asus Zenbook S 14 review: the Lunar Lake laptop delivers power and beauty at a price

Chappell Roan drops out of upcoming festival to prioritize health

Canada gov’t says Montreal port workers to strike at two terminals for three days By Reuters

Inflation cools to 2.2% and may be eroding Trump’s election edge

Leave a reply Cancel reply