CVE-2004-1268
First published: Wed Dec 22 2004(Updated: )
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Easy Software Products Cups | =1.1.19_rc5 | |
| Easy Software Products Cups | =1.1.10 | |
| Easy Software Products Cups | =1.1.16 | |
| Easy Software Products Cups | =1.1.7 | |
| Easy Software Products Cups | =1.0.4_8 | |
| Easy Software Products Cups | =1.1.15 | |
| Easy Software Products Cups | =1.1.21 | |
| Easy Software Products Cups | =1.1.13 | |
| Easy Software Products Cups | =1.1.17 | |
| Easy Software Products Cups | =1.1.4_3 | |
| Easy Software Products Cups | =1.1.4 | |
| Easy Software Products Cups | =1.1.12 | |
| Easy Software Products Cups | =1.1.22_rc1 | |
| Easy Software Products Cups | =1.1.4_5 | |
| Easy Software Products Cups | =1.1.1 | |
| Easy Software Products Cups | =1.1.20 | |
| Easy Software Products Cups | =1.1.18 | |
| Easy Software Products Cups | =1.1.19 | |
| Easy Software Products Cups | =1.0.4 | |
| Easy Software Products Cups | =1.1.14 | |
| Easy Software Products Cups | =1.1.4_2 | |
| Easy Software Products Cups | =1.1.6 | |
| Redhat Fedora Core | =core_2.0 | |
| Redhat Fedora Core | =core_3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://tigger.uic.edu/~jlongs2/holes/cups2.txt
- http://www.redhat.com/support/errata/RHSA-2005-013.html
- http://www.redhat.com/support/errata/RHSA-2005-053.html
- http://www.gentoo.org/security/en/glsa/glsa-200412-25.xml
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:008
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18606
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10398
- https://usn.ubuntu.com/50-1/
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/easy software products
- canonical/easy software products cups
- version/easy software products cups/1.1.19_rc5
- version/easy software products cups/1.1.10
- version/easy software products cups/1.1.16
- version/easy software products cups/1.1.7
- version/easy software products cups/1.0.4_8
- version/easy software products cups/1.1.15
- version/easy software products cups/1.1.21
- version/easy software products cups/1.1.13
- version/easy software products cups/1.1.17
- version/easy software products cups/1.1.4_3
- version/easy software products cups/1.1.4
- version/easy software products cups/1.1.12
- version/easy software products cups/1.1.22_rc1
- version/easy software products cups/1.1.4_5
- version/easy software products cups/1.1.1
- version/easy software products cups/1.1.20
- version/easy software products cups/1.1.18
- version/easy software products cups/1.1.19
- version/easy software products cups/1.0.4
- version/easy software products cups/1.1.14
- version/easy software products cups/1.1.4_2
- version/easy software products cups/1.1.6
- vendor/redhat
- canonical/redhat fedora core
- version/redhat fedora core/core_2.0
- version/redhat fedora core/core_3.0