12 matches found
EUVD-2000-0611
Malware in sbrugna...
[SA13640] LPRng "lprng_certs.sh" Script Insecure Temporary File Creation
TITLE: LPRng "lprngcerts.sh" Script Insecure Temporary File Creation SECUNIA ADVISORY ID: SA13640 VERIFY ADVISORY: http://secunia.com/advisories/13640/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: LPRng 3.x http://secunia.com/product/4454/ DESCRIPTION: Javier...
Mandrake Linux Security Advisory : LPRng (MDKSA-2002:042)
Matthew Caron pointed out that using the LPRng default configuration, the lpd daemon will accept job submissions from any remote host. These updated LPRng packages modify the job submission policy in /etc/lpd.perms to refuse print jobs from remote hosts by default. %NASLMINLEVEL 70300 C Tenable...
SUSE-SA:2002:040: lprng, html2ps
The remote host is missing the patch for the advisory SUSE-SA:2002:040 lprng, html2ps. The lprng package contains the 'runlpr' program which allows the lp user to execute the lpr program as root. Local attackers can pass certain commandline arguments to lpr running as root, fooling it to execute...
Выполнение кода через LPRng (code execution)
При конфертации TeX файла не включается безопасный режим, что позволяет выполнение макрокоманд...
LPRng 3.6.x - Failure To Drop Supplementary Groups
/ source: https://www.securityfocus.com/bid/2865/info The LPRng software is an enhanced, extended, and portable implementation of the Berkeley LPR print spooler functionality. When the LPRng daemon is initialized, it fails to drop its supplementary groups. As a result, the daemon and any child...
LPRng 3.6.24-1 Remote Root Exploit
Exploit for linux platform in category remote exploits ================================== LPRng 3.6.24-1 Remote Root Exploit ================================== / REMOTE ROOT EXPLOIT for linux x86 - LPRng-3.6.24-1 RedHat 7.0 The RedHat 7.0 replaced the BSD lpr with the LPRng package which is...
LPRng 3.6.24-1 - Remote Command Execution
LPRng 3.6.24-1 - Remote Command Execution / REMOTE ROOT EXPLOIT for linux x86 - LPRng-3.6.24-1 RedHat 7.0 The RedHat 7.0 replaced the BSD lpr with the LPRng package which is vulnerable to format string attacks because it passes information to the syslog incorrectly. You can get remote root access...
LPRng 3.6.24-1 - Remote Command Execution
/ REMOTE ROOT EXPLOIT for linux x86 - LPRng-3.6.24-1 RedHat 7.0 The RedHat 7.0 replaced the BSD lpr with the LPRng package which is vulnerable to format string attacks because it passes information to the syslog incorrectly. You can get remote root access on machines running RedHat 7.0 with lpd...
LPRng (RedHat 7.0) - 'lpd' Format String
/ Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer have not been partly removed, altered or modified in any way. The material is the property of security.is. You are allowed to adopt the represented code in your programs,...
FreeBSD-SA-00:56.lprng
-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:56 Security Advisory FreeBSD, Inc. Topic: LPRng contains potential root compromise Category: ports Module: LPRng Announced: 2000-10-13 Credits: Chris Evans Affects: Ports...
LPRng use_syslog() Remote Format String Arbitrary Command Execution
LPRng seems to be running on this port. Versions of LPRng prior to 3.6.24 are missing format string arguments in at least two calls to 'syslog' that handle user-supplied input. Using specially crafted input with format strings, an unauthenticated, remote attacker may be able to leverage these...