PT-2004-2138 · Suse+1 · Suse Linux Enterprise Server+2

Published

2004-12-15

Updated

2017-10-11

CVE-2004-1190

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: SUSE Linux versions prior to 9.1 SUSE Linux Enterprise Server versions prior to 9

Description: The issue is related to improper checking of commands sent to CD devices that have been opened read-only. This could allow local users to conduct unauthorized write activities, potentially modifying the firmware of associated SCSI devices.

Recommendations: For SUSE Linux versions prior to 9.1, update to version 9.1 or later to resolve the issue. For SUSE Linux Enterprise Server versions prior to 9, update to version 9 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1190

RHSA-2006:0101

RHSA-2006_0101

Affected Products

Red Hat

Suse Linux

Suse Linux Enterprise Server

PT-2004-2138 · Suse+1 · Suse Linux Enterprise Server+2

CVE-2004-1190

Related Identifiers

Affected Products

References · 397