Vulnerability in Easy_software_products Cups
CVE-2004-1268
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
EPSS: 0.005 (35.9th percentile) — read the EPSS interpretation.
Affected products
- Easy_software_products Cups — versions 1.0.4, 1.0.4_8, 1.1.1
- Redhat Fedora_core — versions core_2.0, core_3.0
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (vendor-advisory, x_refsource_MANDRAKE)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (x_refsource_UBUNTU, vendor-advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (vendor-advisory, x_refsource_GENTOO)
- cve@mitre.org (Exploit, x_refsource_MISC, Vendor Advisory)