VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Easy Software Products
>
Cups
> Low
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2005-01-27
CVE-2004-0923
Local Password Disclosure vulnerability in CUPS Error_Log
CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.
local
low complexity
easy-software-products
apple
2.1
2.1
2005-01-10
CVE-2004-1268
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
local
low complexity
easy-software-products
redhat
2.1
2.1
2005-01-10
CVE-2004-1270
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message.
local
low complexity
easy-software-products
redhat
2.1
2.1
2001-05-10
CVE-2001-1333
Local Security vulnerability in CUPS
Linux CUPS before 1.1.6 does not securely handle temporary files, possibly due to a symlink vulnerability that could allow local users to overwrite files.
local
high complexity
easy-software-products
1.2
1.2