Unauthorized Write Activities on CD Devices in SUSE Linux

Unauthorized Write Activities on CD Devices in SUSE Linux

CVE-2004-1190 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.