Vulnerability Details CVE-2004-1268
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.1%
CVSS Severity
CVSS v2 Score 2.1
References
- http://tigger.uic.edu/~jlongs2/holes/cups2.txt
- http://www.gentoo.org/security/en/glsa/glsa-200412-25.xml
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:008
- http://www.redhat.com/support/errata/RHSA-2005-013.html
- http://www.redhat.com/support/errata/RHSA-2005-053.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18606
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10398
- https://usn.ubuntu.com/50-1/
- http://tigger.uic.edu/~jlongs2/holes/cups2.txt
- http://www.gentoo.org/security/en/glsa/glsa-200412-25.xml
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:008
- http://www.redhat.com/support/errata/RHSA-2005-013.html
- http://www.redhat.com/support/errata/RHSA-2005-053.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18606
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10398
- https://usn.ubuntu.com/50-1/
Products affected by CVE-2004-1268
-
cpe:2.3:a:easy_software_products:cups:1.0.4
-
cpe:2.3:a:easy_software_products:cups:1.0.4_8
-
cpe:2.3:a:easy_software_products:cups:1.1.1
-
cpe:2.3:a:easy_software_products:cups:1.1.10
-
cpe:2.3:a:easy_software_products:cups:1.1.12
-
cpe:2.3:a:easy_software_products:cups:1.1.13
-
cpe:2.3:a:easy_software_products:cups:1.1.14
-
cpe:2.3:a:easy_software_products:cups:1.1.15
-
cpe:2.3:a:easy_software_products:cups:1.1.16
-
cpe:2.3:a:easy_software_products:cups:1.1.17
-
cpe:2.3:a:easy_software_products:cups:1.1.18
-
cpe:2.3:a:easy_software_products:cups:1.1.19
-
cpe:2.3:a:easy_software_products:cups:1.1.19_rc5
-
cpe:2.3:a:easy_software_products:cups:1.1.20
-
cpe:2.3:a:easy_software_products:cups:1.1.21
-
cpe:2.3:a:easy_software_products:cups:1.1.22_rc1
-
cpe:2.3:a:easy_software_products:cups:1.1.4
-
cpe:2.3:a:easy_software_products:cups:1.1.4_2
-
cpe:2.3:a:easy_software_products:cups:1.1.4_3
-
cpe:2.3:a:easy_software_products:cups:1.1.4_5
-
cpe:2.3:a:easy_software_products:cups:1.1.6
-
cpe:2.3:a:easy_software_products:cups:1.1.7
-
cpe:2.3:o:redhat:fedora_core:core_2.0
-
cpe:2.3:o:redhat:fedora_core:core_3.0