Vulnerability in Apple Mac_os_x
CVE-2004-0923
CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.
EPSS: 0.004 (35.3th percentile) — read the EPSS interpretation.
Affected products
- Apple Mac_os_x — versions 10.2, 10.2.1, 10.2.2
- Apple Mac_os_x_server — versions 10.2, 10.2.1, 10.2.2
- Easy_software_products Cups — versions 1.0.4, 1.0.4_8, 1.1.1
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (US Government Resource, x_refsource_CERT-VN, Third Party Advisory, third-party-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_MANDRAKE)
- cve@mitre.org (vendor-advisory, x_refsource_APPLE)
- cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (government-resource, x_refsource_CIAC, third-party-advisory)