CVE-1999-0773

Buffer overflow in Solaris lpset program allows local users to gain root access...

EUVD-2000-0316

Malware in sbrugna...

EUVD-1999-0754

Malware in sbrugna...

Solaris 2.6/7.0 lpset -r Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a...

Solaris 2.6/7.0 lpset -r Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a...

Sun Solaris <= 7.0 lpset Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/251/info A stack buffer overflow vulnerability in the handling of the -a command in the lpset program allows arbitrary execution of code with root privileges. The lpset utility sets printing configuration information in t...

Solaris 2.6/7.0 lpset -r Buffer Overflow Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a...

lpset.overflow

Here's an overflow exploit that works on a non-exec stack on x86 boxes. It demonstrates how it is possible to thread together several libc calls. I have not seen any other exploits for x86 that have done this.. for the lpset bug in sol7 x86. Tim N. define BASE 0xdff40000 define STACK 0x8047e30...

Еще одна дыра в lpset

Вызывает динамическая библиотека задаваемая пользователем. Подменив библиотеку пользователь может получить права root...

Solaris/SPARC 2.7 lpset exploit &#40;well not likely !&#41;

Hi, lpset seems to use strcat to pass the argument for -r flag /usr/lib/print/lib/../../../../tmp/foo and appends .so to the end. in this case /tmp/foo.so is going to be dlopen but there is a special case /usr/lib/print/lib directory has to exist. xploit shell script is attached. $ uname -a SunOS...

Solaris 7 x86 lpset exploit.

Solaris 7 x86 /usr/bin/lpset overflow, there is a small overflow32 bytes in lpset which will yield root access if properly exploited. There is a sparc version avail for this bug, the bug was discovered by duke some time ago. I am releasing this exploit because of a copy-cat exploit on hack.co.za...

Переполнение буфера в lpset под Solaris

32-байтное переполнение буфера...

Solaris 2.67.0 - lpset -r Local Buffer Overflow (3)

Solaris 2.67.0 - lpset -r Local Buffer Overflow 3 / source: https://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However...

Solaris 2.6/7.0 - &#039;lpset -r&#039; Local Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a well crafted buffer containing...

Solaris 2.6/7.0 - &#039;lpset -r&#039; Local Buffer Overflow (3)

/ source: https://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a well crafted buffer containing...

Solaris 2.6/7.0 - &#039;lpset -r&#039; Local Buffer Overflow (1)

// source: https://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a well crafted buffer containing...

Solaris 2.67.0 - lpset -r Local Buffer Overflow (1)

Solaris 2.67.0 - lpset -r Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. Howeve...

Solaris 2.67.0 - lpset -r Local Buffer Overflow (2)

Solaris 2.67.0 - lpset -r Local Buffer Overflow 2 // source: https://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. Howeve...

CVE-1999-0773

CVE-1999-0773: Buffer overflow in the Solaris lpset program allows local users to gain root access. The available documents confirm the vulnerability but do not provide affected versions, exploit details, or any remediation/patch information.

CVE-1999-0773

Buffer overflow in Solaris lpset program allows local users to gain root access...