CVE-2004-1268
EPSS 0.11%
Description
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
How to fix CVE-2004-1268
To remediate CVE-2004-1268, upgrade the affected package to a fixed version below.
- Debian/cups—upgrade to 1.1.22-2 or later
Is CVE-2004-1268 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.1.22-2