"After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks"
Researchers at Akamai have found that the Common UNIX Printing System (CUPS) could be abused for large Distributed Denial-of-Service (DDoS) attacks following researcher Simone Margaritelli's warning regarding the system being vulnerable to unauthenticated Remote Code Execution (RCE). CUPS is an open source printing system based on the Internet Printing Protocol (IPP). It is mainly for Linux and UNIX-like operating systems. Margaritelli recently disclosed several unpatched CUPS vulnerabilities that, when chained together, can lead to RCE. The exploitation of this set of vulnerabilities could result in the theft of sensitive data or damage to critical systems. Akamai researchers' analysis of Margaritelli's findings revealed a new CUPS attack vector for DDoS attacks. This article continues to discuss new findings regarding the potential abuse of CUPS for DDoS attacks.
Submitted by grigby1