CVE-2004-1268

N/A Unknown

Published: January 10, 2005 Modified: April 16, 2026

Description

lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://tigger.uic.edu/~jlongs2/holes/cups2.txt

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200412-25.xml

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2005:008

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-013.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2005-053.html

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/18606

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10398

Source: cve@mitre.org

https://usn.ubuntu.com/50-1/

Source: cve@mitre.org

http://tigger.uic.edu/~jlongs2/holes/cups2.txt