Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0923

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2004-0923
Last Modified 21 Aug 2010 12:21:29
Published 27 Jan 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0923

Summary

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.2

  • Apple Mac Os X 10.2.1

  • Apple Mac Os X 10.2.2

  • Apple Mac Os X 10.2.3

  • Apple Mac Os X 10.2.4

  • Apple Mac Os X 10.2.5

  • Apple Mac Os X 10.2.6

  • Apple Mac Os X 10.2.7

  • Apple Mac Os X 10.2.8

  • Apple Mac Os X 10.3

  • Apple Mac Os X 10.3.1

  • Apple Mac Os X 10.3.2

  • Apple Mac Os X 10.3.3

  • Apple Mac Os X 10.3.4

  • Apple Mac Os X 10.3.5

  • Apple Mac Os X Server 10.2

  • Apple Mac Os X Server 10.2.1

  • Apple Mac Os X Server 10.2.2

  • Apple Mac Os X Server 10.2.3

  • Apple Mac Os X Server 10.2.4

  • Apple Mac Os X Server 10.2.5

  • Apple Mac Os X Server 10.2.6

  • Apple Mac Os X Server 10.2.7

  • Apple Mac Os X Server 10.2.8

  • Apple Mac Os X Server 10.3

  • Apple Mac Os X Server 10.3.1

  • Apple Mac Os X Server 10.3.2

  • Apple Mac Os X Server 10.3.3

  • Apple Mac Os X Server 10.3.4

  • Apple Mac Os X Server 10.3.5

Application

  • Easy Software Products Cups 1.0.4

  • Easy Software Products Cups 1.0.4 8

  • Easy Software Products Cups 1.1.1

  • Easy Software Products Cups 1.1.10

  • Easy Software Products Cups 1.1.12

  • Easy Software Products Cups 1.1.13

  • Easy Software Products Cups 1.1.14

  • Easy Software Products Cups 1.1.15

  • Easy Software Products Cups 1.1.16

  • Easy Software Products Cups 1.1.17

  • Easy Software Products Cups 1.1.18

  • Easy Software Products Cups 1.1.19

  • Easy Software Products Cups 1.1.19 Rc5

  • Easy Software Products Cups 1.1.20

  • Easy Software Products Cups 1.1.21

  • Easy Software Products Cups 1.1.4

  • Easy Software Products Cups 1.1.4 2

  • Easy Software Products Cups 1.1.4 3

  • Easy Software Products Cups 1.1.4 5

  • Easy Software Products Cups 1.1.6

  • Easy Software Products Cups 1.1.7


References

CERT-VN - VU#557062

BID - 11324

REDHAT - RHSA-2004:543

XF - cups-password-disclosure(17593)

DEBIAN - DSA-566

CIAC - P-002

APPLE - APPLE-SA-2004-09-30

MANDRAKE - MDKSA-2004:116


Last Updated: 27 May 2016 10:38:48