CVE-2004-1190

Published: Jan 10, 2005Modified: Apr 16, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices.

Affected (5)

Products: Suse: Suse Linux

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Suse Suse Linux	Version 8.1
Suse Suse Linux	Version 8.1
Suse Suse Linux	Version 8.2
Suse Suse Linux	Version 8.2
Suse Suse Linux	Version 9.0

References (12)

http://secunia.com/advisories/18510

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2004_42_kernel.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2006-0101.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/11784

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/18370

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9369

Source: cve@mitre.org

http://secunia.com/advisories/18510

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2004_42_kernel.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2006-0101.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/11784

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/18370

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9369

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.