Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job. <a href"https://cwe.mitre.org/data/definitions/184.html">CWE-184: Incomplete Blacklist</a>
Publication date: Fri, 18 Dec 2015 01:59:00 +0000