3 matches found
CVE-2000-0881
The CVE-2000-0881 issue affects the LPPlus dccscan setuid program. The root cause is insufficient permission checks to verify a user’s authorization to print the target file, enabling local users to print arbitrary files. This is a local-privilege/authorization bypass scenario with potential info...
CVE-2000-0879
CVE-2000-0879: LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world‑executable, which allows arbitrary local users to start and stop various LPD services. The provided documents do not include exploitation details or remediation in...
CVE-2000-0880
The CVE-2000-0880 entry concerns LPPlus creating the lpdprocess file with world-writable permissions, which allows local users to kill arbitrary processes by specifying a process ID and using the setuid dcclpdshut program to terminate the specified process. Impact is local access and partial inte...