Solaris <= 8.0 - LPD Command Execution

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

CVE-2001-1583

CVE-2001-1583 affects the Solaris in.lpd (lpd) daemon shipped with Sun Solaris up to version 8.0. A crafted job request with a malformed control file, not correctly handled when lpd calls a mail program, allows remote command execution. Exploitation has been demonstrated in public advisories and ...

Solaris LPD Command Execution

This module exploits an arbitrary command execution flaw in the in.lpd service shipped with all versions of Sun Solaris up to and including 8.0. This module uses a technique discovered by Dino Dai Zovi to exploit the flaw without needing to know the resolved name of the attacking system. This...

CVE-2001-1583

lpd daemon in.lpd in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program. NOTE: this might be the same vulnerability as CVE-2000-1220...

Immunity Canvas: IN_LPD

Name| inlpd ---|--- CVE| CVE-2001-1583 Exploit Pack| CANVAS Description| in.lpd Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F41664&zone32=category%3Asecurity%20lpd CVE Name: CVE-2001-1583 VENDOR: Sun Date public: 08/31/2001 CERT Advisory:...