Unauthorized Write Activities on CD Devices in SUSE Linux
CVE-2004-1190 · LOW Severity
AV:L/AC:L/AU:N/C:N/I:P/A:N
SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices.
Learn more about our Cis Benchmark Audit For Distribution Independent Linux.