Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2004-0923

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

Related bugs and status

CVE-2004-0923 (Candidate) is related to these bugs:

Bug #9107: no longer able to print to smb printers (regression from 1.1.20final+cvs20040330-4ubuntu15)

Summary				In	Importance	Status
	9107	no longer able to print to smb printers (regression from 1.1.20final+cvs20040330-4ubuntu15)		cupsys (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

APPLE: APPLE-SA-2004-09-30
DEBIAN: DSA-566
REDHAT: RHSA-2004:543
CIAC: P-002
CERT-VN: VU#557062
BID: 11324
MANDRAKE: MDKSA-2004:116
XF: cups-password-disclosu...
OVAL: oval:org.mitre.oval:de...