FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

cups -- Incomplete SSL Negotiation Denial of Service

Affected packages
cups-base < 1.2.11

Details

VuXML ID 39988ee8-1918-11dc-b6bd-0016179b2dd5
Discovery 2007-05-05
Entry 2007-06-12

Secunia reports:

CUPS is not using multiple workers to handle connections. This can be exploited to stop CUPS from accepting new connections by starting but never completing an SSL negotiation.

References

CVE Name CVE-2007-0720
URL http://secunia.com/advisories/24517/
URL http://security.gentoo.org/glsa/glsa-200703-28.xml