Apple · Cups · CVE-2005-2874
**Name of the Vulnerable Software and Affected Versions**
CUPS versions prior to 1.1.23
**Description**
The issue allows remote attackers to cause a denial of service, specifically CPU consumption by a tight loop, via a "...." URL in an HTTP request. This is due to the `is path absolute` function in `scheduler/client.c` for the daemon.
**Recommendations**
For versions prior to 1.1.23, update to version 1.1.23 or later to resolve the issue.