2.1
CVE-2004-1270
- EPSS 0.11%
- Published 10.01.2005 05:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message.
Data is provided by the National Vulnerability Database (NVD)
Easy Software Products ≫ Cups Version1.0.4
Easy Software Products ≫ Cups Version1.0.4_8
Easy Software Products ≫ Cups Version1.1.1
Easy Software Products ≫ Cups Version1.1.4
Easy Software Products ≫ Cups Version1.1.4_2
Easy Software Products ≫ Cups Version1.1.4_3
Easy Software Products ≫ Cups Version1.1.4_5
Easy Software Products ≫ Cups Version1.1.6
Easy Software Products ≫ Cups Version1.1.7
Easy Software Products ≫ Cups Version1.1.10
Easy Software Products ≫ Cups Version1.1.12
Easy Software Products ≫ Cups Version1.1.13
Easy Software Products ≫ Cups Version1.1.14
Easy Software Products ≫ Cups Version1.1.15
Easy Software Products ≫ Cups Version1.1.16
Easy Software Products ≫ Cups Version1.1.17
Easy Software Products ≫ Cups Version1.1.18
Easy Software Products ≫ Cups Version1.1.19
Easy Software Products ≫ Cups Version1.1.19_rc5
Easy Software Products ≫ Cups Version1.1.20
Easy Software Products ≫ Cups Version1.1.21
Easy Software Products ≫ Cups Version1.1.22_rc1
Redhat ≫ Fedora Core Versioncore_2.0
Redhat ≫ Fedora Core Versioncore_3.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.11% | 0.258 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|