2.1

CVE-2004-0923

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Easy Software ProductsCups Version1.0.4
Easy Software ProductsCups Version1.0.4_8
Easy Software ProductsCups Version1.1.1
Easy Software ProductsCups Version1.1.4
Easy Software ProductsCups Version1.1.4_2
Easy Software ProductsCups Version1.1.4_3
Easy Software ProductsCups Version1.1.4_5
Easy Software ProductsCups Version1.1.6
Easy Software ProductsCups Version1.1.7
Easy Software ProductsCups Version1.1.10
Easy Software ProductsCups Version1.1.12
Easy Software ProductsCups Version1.1.13
Easy Software ProductsCups Version1.1.14
Easy Software ProductsCups Version1.1.15
Easy Software ProductsCups Version1.1.16
Easy Software ProductsCups Version1.1.17
Easy Software ProductsCups Version1.1.18
Easy Software ProductsCups Version1.1.19
Easy Software ProductsCups Version1.1.19_rc5
Easy Software ProductsCups Version1.1.20
Easy Software ProductsCups Version1.1.21
ApplemacOS X Version10.2
ApplemacOS X Version10.2.1
ApplemacOS X Version10.2.2
ApplemacOS X Version10.2.3
ApplemacOS X Version10.2.4
ApplemacOS X Version10.2.5
ApplemacOS X Version10.2.6
ApplemacOS X Version10.2.7
ApplemacOS X Version10.2.8
ApplemacOS X Version10.3
ApplemacOS X Version10.3.1
ApplemacOS X Version10.3.2
ApplemacOS X Version10.3.3
ApplemacOS X Version10.3.4
ApplemacOS X Version10.3.5
ApplemacOS X Server Version10.2
ApplemacOS X Server Version10.2.1
ApplemacOS X Server Version10.2.2
ApplemacOS X Server Version10.2.3
ApplemacOS X Server Version10.2.4
ApplemacOS X Server Version10.2.5
ApplemacOS X Server Version10.2.6
ApplemacOS X Server Version10.2.7
ApplemacOS X Server Version10.2.8
ApplemacOS X Server Version10.3
ApplemacOS X Server Version10.3.1
ApplemacOS X Server Version10.3.2
ApplemacOS X Server Version10.3.3
ApplemacOS X Server Version10.3.4
ApplemacOS X Server Version10.3.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.45% 0.353
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html
http://www.mandriva.com/security/advisories?name=MDKSA-2004:116
http://www.redhat.com/support/errata/RHSA-2004-543.html
Patch
Vendor Advisory
http://www.ciac.org/ciac/bulletins/p-002.shtml
http://www.debian.org/security/2004/dsa-566
http://www.kb.cert.org/vuls/id/557062
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/11324
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/17593
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10710