EUVD-2000-0866

Malware in sbrugna...

EUVD-2000-0867

Malware in sbrugna...

LPPlus 3.2.2/3.3 dccscan unprivileged read vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1644/info $LPHOME/bin/dccscan is suid-root and can be executed by any user. It is possible for an unprivileged user to print files to which he does not have read access. In testing, this works even for printers to which t...

LPPlus 3.2.2/3.3 Permissions DoS Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/1643/info Vulnerability 1: Several files that are part of the LPPlus print management system are installed setuid root by default. These files include: $LPHOME/bin/dccsched $LPHOME/bin/dcclpdser $LPHOME/bin/dccbkst These...

lpplus.txt

Multiple Security Holes in LPPlus --------------------------------- echo8, 8/23/2000 Summary ------- LPPlus is Plus Technologies' print management system for unix. Versions prior to v3.3.x have several serious security holes, some of which undermine the integrity of the printing subsystem, some o...

CVE-2000-0879

LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services...

CVE-2000-0880

LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file...

CVE-2000-0881

The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files...

CVE-2000-0881

The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files...

CVE-2000-0881

The CVE-2000-0881 issue affects the LPPlus dccscan setuid program. The root cause is insufficient permission checks to verify a user’s authorization to print the target file, enabling local users to print arbitrary files. This is a local-privilege/authorization bypass scenario with potential info...

CVE-2000-0880

LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file...

CVE-2000-0879

CVE-2000-0879: LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world‑executable, which allows arbitrary local users to start and stop various LPD services. The provided documents do not include exploitation details or remediation in...

CVE-2000-0880

The CVE-2000-0880 entry concerns LPPlus creating the lpdprocess file with world-writable permissions, which allows local users to kill arbitrary processes by specifying a process ID and using the setuid dcclpdshut program to terminate the specified process. Impact is local access and partial inte...

CVE-2000-0879

LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services...

LPPlus 3.2.2/3.3 - dccscan Unprivileged read

source: https://www.securityfocus.com/bid/1644/info $LPHOME/bin/dccscan is suid-root and can be executed by any user. It is possible for an unprivileged user to print files to which he does not have read access. In testing, this works even for printers to which the user is is not given any access...

LPPlus 3.2.2/3.3 - Permissions Denial of Service

source: https://www.securityfocus.com/bid/1643/info Vulnerability 1: Several files that are part of the LPPlus print management system are installed setuid root by default. These files include: $LPHOME/bin/dccsched $LPHOME/bin/dcclpdser $LPHOME/bin/dccbkst These start the scheduler, LPD server an...

Multiple Security Holes in LPPlus

LPPlus is Plus Technologies' print management system for unix. It contains several serious security holes, some of which undermine the integrity of the printing subsystem, some of which threaten the security of the system on which the product is installed. Details ------- Hole 1: Of the 74 binari...

LPPlus 3.2.23.3 - dccscan Unprivileged read

LPPlus 3.2.23.3 - dccscan Unprivileged read source: https://www.securityfocus.com/bid/1644/info $LPHOME/bin/dccscan is suid-root and can be executed by any user. It is possible for an unprivileged user to print files to which he does not have read access. In testing, this works even for printers ...

LPPlus 3.2.23.3 - Permissions Denial of Service

LPPlus 3.2.23.3 - Permissions Denial of Service source: https://www.securityfocus.com/bid/1643/info Vulnerability 1: Several files that are part of the LPPlus print management system are installed setuid root by default. These files include: $LPHOME/bin/dccsched $LPHOME/bin/dcclpdser...