Authentication Information Disclosure in CUPS 1.1.20 and Earlier

Authentication Information Disclosure in CUPS 1.1.20 and Earlier

CVE-2004-0923 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.

Learn more about our User Device Pen Test.