Ubuntu 6.06 LTS: USN-856-1 Critical: CUPS XSS And CSRF Threat
ubuntu
November 10, 2009
CUPS security flaw discovered impacting multiple Ubuntu versions. Patch installations recommended to fortify systems against XSS and CSRF vulnerabilities.
Aaron Sigel discovered that the CUPS web interface incorrectly protected against cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks