CVE-2004-1268

lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.

Published: Jan 10, 2005
Updated: Apr 13, 2023
CVE: CVE-2004-1268
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
easy_software_products / cups	1.1.19_rc5	1.1.19_rc5.x
easy_software_products / cups	1.1.10	1.1.10.x
easy_software_products / cups	1.1.16	1.1.16.x
easy_software_products / cups	1.1.7	1.1.7.x
easy_software_products / cups	1.0.4_8	1.0.4_8.x
easy_software_products / cups	1.1.15	1.1.15.x
easy_software_products / cups	1.1.21	1.1.21.x
easy_software_products / cups	1.1.13	1.1.13.x
easy_software_products / cups	1.1.17	1.1.17.x
easy_software_products / cups	1.1.4_3	1.1.4_3.x
easy_software_products / cups	1.1.4	1.1.4.x
easy_software_products / cups	1.1.12	1.1.12.x
easy_software_products / cups	1.1.22_rc1	1.1.22_rc1.x
easy_software_products / cups	1.1.4_5	1.1.4_5.x
easy_software_products / cups	1.1.1	1.1.1.x
easy_software_products / cups	1.1.20	1.1.20.x
easy_software_products / cups	1.1.18	1.1.18.x
easy_software_products / cups	1.1.19	1.1.19.x
easy_software_products / cups	1.0.4	1.0.4.x
easy_software_products / cups	1.1.14	1.1.14.x
easy_software_products / cups	1.1.4_2	1.1.4_2.x
easy_software_products / cups	1.1.6	1.1.6.x
redhat / fedora_core	core_2.0	core_2.0.x
redhat / fedora_core	core_3.0	core_3.0.x

Vulnerability Database

CVE-2004-1268

Deep Security Visibility Without the Complexity