CVE Vulnerabilities

CVE-2004-0923

Published: Jan 27, 2005 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

Affected Software

Name Vendor Start Version End Version
Cups Easy_software_products 1.0.4 (including) 1.0.4 (including)
Cups Easy_software_products 1.0.4_8 (including) 1.0.4_8 (including)
Cups Easy_software_products 1.1.1 (including) 1.1.1 (including)
Cups Easy_software_products 1.1.4 (including) 1.1.4 (including)
Cups Easy_software_products 1.1.4_2 (including) 1.1.4_2 (including)
Cups Easy_software_products 1.1.4_3 (including) 1.1.4_3 (including)
Cups Easy_software_products 1.1.4_5 (including) 1.1.4_5 (including)
Cups Easy_software_products 1.1.6 (including) 1.1.6 (including)
Cups Easy_software_products 1.1.7 (including) 1.1.7 (including)
Cups Easy_software_products 1.1.10 (including) 1.1.10 (including)
Cups Easy_software_products 1.1.12 (including) 1.1.12 (including)
Cups Easy_software_products 1.1.13 (including) 1.1.13 (including)
Cups Easy_software_products 1.1.14 (including) 1.1.14 (including)
Cups Easy_software_products 1.1.15 (including) 1.1.15 (including)
Cups Easy_software_products 1.1.16 (including) 1.1.16 (including)
Cups Easy_software_products 1.1.17 (including) 1.1.17 (including)
Cups Easy_software_products 1.1.18 (including) 1.1.18 (including)
Cups Easy_software_products 1.1.19 (including) 1.1.19 (including)
Cups Easy_software_products 1.1.19_rc5 (including) 1.1.19_rc5 (including)
Cups Easy_software_products 1.1.20 (including) 1.1.20 (including)
Cups Easy_software_products 1.1.21 (including) 1.1.21 (including)
Red Hat Enterprise Linux 3 RedHat cups-1:1.1.17-13.3.16 *
Samba Ubuntu devel *

References