Description
The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files.
Affected Software
{"id": "CVE-2000-0881", "vendorId": null, "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2000-0881", "description": "The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files.", "published": "2000-11-14T05:00:00", "modified": "2017-12-19T02:29:00", "cvss": {"score": 2.1, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1}, "severity": "LOW", "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2000-0881", "reporter": "cve@mitre.org", "references": ["http://www.securityfocus.com/bid/1644", "http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/5201"], "cvelist": ["CVE-2000-0881"], "immutableFields": [], "lastseen": "2022-03-23T12:12:54", "viewCount": 11, "enchantments": {"dependencies": null, "score": {"value": 3.3, "vector": "NONE"}, "backreferences": {}, "exploitation": null, "vulnersScore": 3.3}, "_state": {"dependencies": 0}, "_internal": {}, "cna_cvss": {"cna": null, "cvss": {}}, "cpe": ["cpe:/a:plus_technologies:lpplus:3.3", "cpe:/a:plus_technologies:lpplus:3.2.2"], "cpe23": ["cpe:2.3:a:plus_technologies:lpplus:3.3:*:*:*:*:*:*:*", "cpe:2.3:a:plus_technologies:lpplus:3.2.2:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "affectedSoftware": [{"cpeName": "plus_technologies:lpplus", "version": "3.2.2", "operator": "eq", "name": "plus technologies lpplus"}, {"cpeName": "plus_technologies:lpplus", "version": "3.3", "operator": "eq", "name": "plus technologies lpplus"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:plus_technologies:lpplus:3.2.2:*:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:plus_technologies:lpplus:3.3:*:*:*:*:*:*:*", "cpe_name": []}]}]}, "extraReferences": [{"url": "http://www.securityfocus.com/bid/1644", "name": "1644", "refsource": "BID", "tags": ["Exploit", "Vendor Advisory"]}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2000-08/0531.html", "name": "20000906 Multiple Security Holes in LPPlus", "refsource": "BUGTRAQ", "tags": ["Vendor Advisory"]}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/5201", "name": "lpplus-dccscan-file-read(5201)", "refsource": "XF", "tags": []}]}
{}