Cross-Site Scripting in Apple CUPS Web Interface

July 7, 2015

Apple CUPS Web Interface written in CGI is vulnerable to reflected cross site scripting. While processing the GET request, if a URL contains an tag, the vulnerable CGI enters a while loop until it finds the closing double quote (") and copies over all the characters without escaping.

Attacker can entice user to go through the URL containing exploit to execute the controlled script, which can lead to disclosure of information and impersonate the target.

Dell SonicWALL has released an IPS signature to detect and block exploitation attempts targeting this vulnerability. The signature is listed below:

11003 Apple CUPS Web Interface XSS