Vulnerabilities > Easy Software Products > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2005-01-27	CVE-2004-0923	Local Password Disclosure vulnerability in CUPS Error_Log CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords. local low complexity easy-software-products apple	2.1
2005-01-10	CVE-2004-1268	lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors. local low complexity easy-software-products redhat	2.1
2005-01-10	CVE-2004-1270	lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user input that triggers an error message. local low complexity easy-software-products redhat	2.1
2001-05-10	CVE-2001-1333	Local Security vulnerability in CUPS Linux CUPS before 1.1.6 does not securely handle temporary files, possibly due to a symlink vulnerability that could allow local users to overwrite files. local high complexity easy-software-products	1.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.