CVE-2007-4351

Name of the Vulnerable Software and Affected Versions: CUPS versions prior to 1.2.12-r2 CUPS version 1.3.3

Description: The issue is related to an off-by-one error in the ippReadIO function, which can lead to a stack-based buffer overflow. This can be exploited remotely, potentially causing a denial of service (crash) via crafted Internet Printing Protocol (IPP) tags, such as textWithLanguage or nameWithLanguage. The exploitation of this issue may compromise the confidentiality, integrity, and availability of protected information.

Recommendations: For CUPS versions prior to 1.2.12-r2, update to version 1.2.12-r2 or later. For CUPS version 1.3.3, consider disabling the ippReadIO function as a temporary workaround until a patch is available. Restrict access to the vulnerable ipp.c module to minimize the risk of exploitation. Avoid using crafted IPP tags, such as textWithLanguage or nameWithLanguage, in the affected API endpoint until the issue is resolved.