Microsoft Windows 'Print Operators' Group User List

Using the supplied credentials, it is possible to extract the member list of the 'Print Operators' group. Members of this group can manage printers within a Windows Domain or shutdown a server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10905; scriptversion"1.20"...

CVE-2001-0670

CVE-2001-0670 is a remote buffer overflow in the BSD line printer daemon (in.lpd/lpd) that can allow an attacker to execute arbitrary code with elevated privileges. The vulnerability is triggered by a crafted, incomplete print job followed by a request to display the printer queue, and the attack...

CVE-2001-0668

Buffer overflow in line printer daemon rlpdaemon in HP-UX 10.01 through 11.11 allows remote attackers to execute arbitrary commands...

CVE-2001-0670

Buffer overflow in BSD line printer daemon in.lpd or lpd in various BSD-based operating systems allows remote attackers to execute arbitrary code via an incomplete print job followed by a request to display the printer queue...

Zero One Tech (ZOT) P100s PrintServer and SNMP

Background: The ZOT P100s is a hardware printserver device allowing sharing of a parallel printer on a standard UTP network. It has embedded telnet, http among others and provides information via SNMP with default community read string. have not tried write yet. Problem: After connecting to the...

CVE-2001-1039

The JetAdmin web interface for HP JetDirect does not set a password for the telnet interface when the admin password is changed, which allows remote attackers to gain access to the printer...

PT-2001-2667 · Oracle · Solaris

Name of the Vulnerable Software and Affected Versions: Solaris versions 8 and earlier Description: The issue allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when the lpd daemon invokes a mail program. Recommendations...

CVE-2001-0817

Vulnerability in HP-UX line printer daemon rlpdaemon in HP-UX 10.01 through 11.11 allows remote attackers to modify arbitrary files and gain root privileges via a certain print request...

ISS Security Advisory: Remote Logic Flaw Vulnerability in HP-UX Line Printer Daemon

Internet Security Systems Security Advisory November 20, 2001 Remote Logic Flaw Vulnerability in HP-UX Line Printer Daemon Synopsis: Internet Security Systems ISS X-Force has discovered a vulnerability in the HP-UX line printer daemon rlpdaemon. This vulnerability may allow a remote or local...

HP-UX Line Printer Daemon Vulnerable to Directory Traversal

Overview A remotely exploitable directory traversal vulnerability exists in the HP-UX line printer daemon. Description The line printer daemon rlpdaemon enables various clients to share printers over a network. By sending a specially crafted print request to an HP-UX host running the rlpdaemon, a...

Advisory CA-2001-30 Multiple Vulnerabilities in lpd

CERT Advisory CA-2001-30 Multiple Vulnerabilities in lpd Original release date: November 05, 2001 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected BSDi BSD/OS Version 4.1 and earlier Debian GNU/Linux 2.1 and 2.1r4 FreeBSD All...

IBM AIX line printer daemon contains a buffer overflow in chk_fhost()

Overview The Line Printer daemon lpd shipped with AIX systems contains a buffer overflow in chkfhost that potentially allow a malicious remote user to gain root privileges. Description A buffer overflow exists in the chkfhost function of the line printer daemon lpd on AIX systems. An intruder cou...

IBM AIX line printer daemon contains a buffer overflow in kill_print()

Overview The Line Printer daemon lpd shipped with AIX systems contains a buffer overflow in killprint that potentially allow a malicious remote user to gain root privileges. Description A buffer overflow exists in the killprint function of the line printer daemon lpd on AIX systems. An intruder...

lpd hostname authentication bypassed with spoofed DNS

Overview The line printer daemon enables various clients to share printers over a network. There exists a flaw in the authentication method in this daemon that permits remote access to the server. Description A vulnerability exists in the line printer daemon lpd shipped with the lpr package for...

lpd allows options to be passed to sendmail

Overview The line printer daemon enables various clients to share printers over a network. There exists a vulnerability in this daemon that permits an intruder to send options to sendmail. Description The line printer daemon enables various clients to share printers over a network. There exists a...

CVE-2001-0670

Buffer overflow in BSD line printer daemon in.lpd or lpd in various BSD-based operating systems allows remote attackers to execute arbitrary code via an incomplete print job followed by a request to display the printer queue...

CVE-2001-0668

Buffer overflow in line printer daemon rlpdaemon in HP-UX 10.01 through 11.11 allows remote attackers to execute arbitrary commands...

CVE-2001-0353

Buffer overflow in the line printer daemon in.lpd for Solaris 8 and earlier allows local and remote attackers to gain root privileges via a "transfer job" routine...

CVE-1999-1508

The CVE-1999-1508 issue affects the Tektronix PhaserLink Printer Web Server (840.0 and earlier). The vulnerability arises from undocumented URLs (ncl_items.html and ncl_subjects.html) that, when requested, can allow a remote attacker to gain administrator access to the printer. The connected NASL...

CVE-1999-1563

CVE-1999-1563 concerns Nachuatec D435 and D445 printers, where remote attackers can cause a denial-of-service through an ICMP redirect storm. The available documents only state the affected device and the general impact (DoS via ICMP redirects); no concrete root‑cause, vulnerable subcomponent, ex...