CVE-2014-2707

Name of the Vulnerable Software and Affected Versions cups-filters versions 1.0.41 through 1.0.50

Description The issue allows remote IPP printers to execute arbitrary commands via shell metacharacters in the model or PDL, related to System V interface scripts generated for queues. This can lead to a violation of confidentiality, integrity, and availability of protected information.

Recommendations For versions 1.0.41 through 1.0.50, update to version 1.0.51 or later to resolve the issue. As a temporary workaround, consider restricting access to the model and PDL parameters in the IPP protocol to minimize the risk of exploitation. Avoid using shell metacharacters in these parameters until the issue is resolved.