Mandrake Linux Security Advisory : lpr (MDKSA-2003:059)

A buffer overflow was discovered in the lpr printer spooling system that can be exploited by a local user to gain root privileges. This can be done even if the printer is configured properly. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plug...

Mandrake Linux Security Advisory : lpr (MDKSA-2000:054)

There is a format string bug in lpr with its calls to the syslog facility. There are no known exploits at ths time, but it may be possible for a user to gain local root access. This new lpr fixes this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

Debian: Security Advisory (DSA-267-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2000-1221

The CVE describes a vulnerability in the line printer daemon (lpd) in the lpr package across multiple Linux operating systems. The root cause is an authentication check that compares the reverse-resolved hostname of the local machine to the hostname returned by gethostname; remote attackers can b...

CVE-2000-1220

CVE-2000-1220 affects the line printer daemon (lpd) in the lpr package across multiple Linux distributions. The vulnerability lets local users gain root privileges by causing sendmail to be invoked with arbitrary command line arguments through a crafted -C configuration file option. This is trigg...

Debian DSA-267-1 : lpr - buffer overflow

A buffer overflow has been discovered in lpr, a BSD lpr/lpd line printer spooling system. This problem can be exploited by a local user to gain root privileges, even if the printer system is set up properly. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] [DSA 267-2] New lpr packages fix local root exploit (potato)

-------------------------------------------------------------------------- Debian Security Advisory DSA 267-2 [email protected] http://www.debian.org/security/ Martin Schulze April 15th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 267-2] New lpr packages fix local root exploit (potato)

-------------------------------------------------------------------------- Debian Security Advisory DSA 267-2 [email protected] http://www.debian.org/security/ Martin Schulze April 15th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA 267-1] New lpr packages fix local root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 267-1 [email protected] http://www.debian.org/security/ Martin Schulze March 24th, 2003 http://www.debian.org/security/faq -...

BSD lpr 0.54 -4 - Arbitrary Command Execution

BSD lpr 0.54 -4 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/1834/info lpr is a set of printing tools for unix systems. The lpr package that ships with RedHat Linux 6.2 and possibly earlier versions contains a vulnerability that will allow an attacker to execute arbitra...

CVE-2000-1221

The line printer daemon lpd in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by...

DEBIAN-CVE-2000-1220

The line printer daemon lpd in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file...