2.1
CVE-2004-1270
- EPSS 0.11%
- Veröffentlicht 10.01.2005 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Easy Software Products ≫ Cups Version1.0.4
Easy Software Products ≫ Cups Version1.0.4_8
Easy Software Products ≫ Cups Version1.1.1
Easy Software Products ≫ Cups Version1.1.4
Easy Software Products ≫ Cups Version1.1.4_2
Easy Software Products ≫ Cups Version1.1.4_3
Easy Software Products ≫ Cups Version1.1.4_5
Easy Software Products ≫ Cups Version1.1.6
Easy Software Products ≫ Cups Version1.1.7
Easy Software Products ≫ Cups Version1.1.10
Easy Software Products ≫ Cups Version1.1.12
Easy Software Products ≫ Cups Version1.1.13
Easy Software Products ≫ Cups Version1.1.14
Easy Software Products ≫ Cups Version1.1.15
Easy Software Products ≫ Cups Version1.1.16
Easy Software Products ≫ Cups Version1.1.17
Easy Software Products ≫ Cups Version1.1.18
Easy Software Products ≫ Cups Version1.1.19
Easy Software Products ≫ Cups Version1.1.19_rc5
Easy Software Products ≫ Cups Version1.1.20
Easy Software Products ≫ Cups Version1.1.21
Easy Software Products ≫ Cups Version1.1.22_rc1
Redhat ≫ Fedora Core Versioncore_2.0
Redhat ≫ Fedora Core Versioncore_3.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.11% | 0.258 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|