Lucene search

[email protected]NVD:CVE-2004-0923

HistoryJan 27, 2005 - 5:00 a.m.

CVE-2004-0923

2005-01-2705:00:00

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.3%

JSON

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

Affected configurations

NVD

Node

easy_software_productscupsMatch1.0.4

easy_software_productscupsMatch1.0.4_8

easy_software_productscupsMatch1.1.1

easy_software_productscupsMatch1.1.4

easy_software_productscupsMatch1.1.4_2

easy_software_productscupsMatch1.1.4_3

easy_software_productscupsMatch1.1.4_5

easy_software_productscupsMatch1.1.6

easy_software_productscupsMatch1.1.7

easy_software_productscupsMatch1.1.10

easy_software_productscupsMatch1.1.12

easy_software_productscupsMatch1.1.13

easy_software_productscupsMatch1.1.14

easy_software_productscupsMatch1.1.15

easy_software_productscupsMatch1.1.16

easy_software_productscupsMatch1.1.17

easy_software_productscupsMatch1.1.18

easy_software_productscupsMatch1.1.19

easy_software_productscupsMatch1.1.19_rc5

easy_software_productscupsMatch1.1.20

easy_software_productscupsMatch1.1.21

Node

applemac_os_xMatch10.2

applemac_os_xMatch10.2.1

applemac_os_xMatch10.2.2

applemac_os_xMatch10.2.3

applemac_os_xMatch10.2.4

applemac_os_xMatch10.2.5

applemac_os_xMatch10.2.6

applemac_os_xMatch10.2.7

applemac_os_xMatch10.2.8

applemac_os_xMatch10.3

applemac_os_xMatch10.3.1

applemac_os_xMatch10.3.2

applemac_os_xMatch10.3.3

applemac_os_xMatch10.3.4

applemac_os_xMatch10.3.5

applemac_os_x_serverMatch10.2

applemac_os_x_serverMatch10.2.1

applemac_os_x_serverMatch10.2.2

applemac_os_x_serverMatch10.2.3

applemac_os_x_serverMatch10.2.4

applemac_os_x_serverMatch10.2.5

applemac_os_x_serverMatch10.2.6

applemac_os_x_serverMatch10.2.7

applemac_os_x_serverMatch10.2.8

applemac_os_x_serverMatch10.3

applemac_os_x_serverMatch10.3.1

applemac_os_x_serverMatch10.3.2

applemac_os_x_serverMatch10.3.3

applemac_os_x_serverMatch10.3.4

applemac_os_x_serverMatch10.3.5

References

lists.apple.com/archives/security-announce/2004/Oct/msg00000.html

www.ciac.org/ciac/bulletins/p-002.shtml

www.debian.org/security/2004/dsa-566

www.kb.cert.org/vuls/id/557062

www.mandriva.com/security/advisories?name=MDKSA-2004:116

www.redhat.com/support/errata/RHSA-2004-543.html

www.securityfocus.com/bid/11324

exchange.xforce.ibmcloud.com/vulnerabilities/17593

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10710

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for NVD:CVE-2004-0923

cve1 gentoo1 nessus8 debian2 debiancve1 openvas6 cert1 ubuntucve1 freebsd1 osv1 cvelist1 securityvulns1 redhat1