Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2004-1270
HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1270

2005-01-1005:00:00
[email protected]
web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message.

Affected configurations

NVD
Node
easy_software_productscupsMatch1.0.4
OR
easy_software_productscupsMatch1.0.4_8
OR
easy_software_productscupsMatch1.1.1
OR
easy_software_productscupsMatch1.1.4
OR
easy_software_productscupsMatch1.1.4_2
OR
easy_software_productscupsMatch1.1.4_3
OR
easy_software_productscupsMatch1.1.4_5
OR
easy_software_productscupsMatch1.1.6
OR
easy_software_productscupsMatch1.1.7
OR
easy_software_productscupsMatch1.1.10
OR
easy_software_productscupsMatch1.1.12
OR
easy_software_productscupsMatch1.1.13
OR
easy_software_productscupsMatch1.1.14
OR
easy_software_productscupsMatch1.1.15
OR
easy_software_productscupsMatch1.1.16
OR
easy_software_productscupsMatch1.1.17
OR
easy_software_productscupsMatch1.1.18
OR
easy_software_productscupsMatch1.1.19
OR
easy_software_productscupsMatch1.1.19_rc5
OR
easy_software_productscupsMatch1.1.20
OR
easy_software_productscupsMatch1.1.21
OR
easy_software_productscupsMatch1.1.22_rc1
Node
redhatfedora_coreMatchcore_2.0
OR
redhatfedora_coreMatchcore_3.0

Related

cve 1
ubuntucve 1
cvelist 1
debiancve 1
nessus 7
openvas 6
freebsd 1
ubuntu 1
gentoo 1
redhat 2
cve
cve
CVE-2004-1270
2005-01-10 05:00:00
ubuntucve
ubuntucve
CVE-2004-1270
2005-01-10 00:00:00
cvelist
cvelist
CVE-2004-1270
2004-12-22 05:00:00
debiancve
debiancve
CVE-2004-1270
2005-01-10 05:00:00
nessus
nessus
FreeBSD : cups-lpr -- lppasswd multiple vulnerabilities (7850a238-680a-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
Mandrake Linux Security Advisory : cups (MDKSA-2005:008)
2005-01-18 00:00:00
RHEL 3 : cups (RHSA-2005:013)
2005-01-13 00:00:00
openvas
openvas
FreeBSD Ports: cups-lpr, fr-cups-lpr
2008-09-04 00:00:00
FreeBSD Ports: cups-lpr, fr-cups-lpr
2008-09-04 00:00:00
CUPS < 1.1.23 Multiple Vulnerabilities
2005-11-03 00:00:00
freebsd
freebsd
cups-lpr -- lppasswd multiple vulnerabilities
2004-12-11 00:00:00
ubuntu
ubuntu
CUPS vulnerabilities
2004-12-23 00:00:00
gentoo
gentoo
CUPS: Multiple vulnerabilities
2004-12-28 00:00:00
redhat
redhat
(RHSA-2005:013) cups security update
2005-01-12 00:00:00
(RHSA-2005:053) CUPS security update
2005-02-15 00:00:00

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for NVD:CVE-2004-1270
cve1ubuntucve1cvelist1debiancve1nessus7openvas6freebsd1ubuntu1gentoo1redhat2