A deep dive into CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177. A remote unauthenticated attacker can silently replace existing printers or install new ones with a malicious one, resulting in arbitrary command execution (on the computer) when a print job is started.
Timestamps:
0:00 – Introduction
1:45 – Vulnerability Overview
5:50 – Shodan Impact
7:04 – What is CUPS?
8:15 – The Internet Printing Protocol (IPP)
10:00 – Proof of Concept
19:05 – Remote Code Execution
26:10 – Getting a Shell
32:20 – Mitigation
References:
–
–
–
[ad_2]
source
Related Articles
-
-
-
-
