CVE-2004-0923

Опубликовано: 27 янв. 2005

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

Ссылки

http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html
http://www.ciac.org/ciac/bulletins/p-002.shtml
http://www.debian.org/security/2004/dsa-566
http://www.kb.cert.org/vuls/id/557062
Third Party Advisory
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2004:116
http://www.redhat.com/support/errata/RHSA-2004-543.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/11324
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/17593
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10710
http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html
http://www.ciac.org/ciac/bulletins/p-002.shtml
http://www.debian.org/security/2004/dsa-566
http://www.kb.cert.org/vuls/id/557062
Third Party Advisory
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2004:116
http://www.redhat.com/support/errata/RHSA-2004-543.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/11324
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/17593
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10710

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.12:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.15:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.16:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.18:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.19:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.19_rc5:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.20:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.21:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.6:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.7:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.6:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.7:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.5:*:*:*:*:*:*:*

EPSS

Процентиль: 32%

0.00121

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-0923

ubuntu

больше 20 лет назад

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

CVE-2004-0923

redhat

больше 20 лет назад

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

CVE-2004-0923

debian

больше 20 лет назад

CUPS 1.1.20 and earlier records authentication information for a devic ...

GHSA-5vjf-3cwc-4r7f

github

около 3 лет назад

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

EPSS

Процентиль: 32%

0.00121

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other