Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2004-2154

Disclosure Date: December 31, 2004
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows attackers to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

General Information

Technical Analysis