Published: 08/01/2000 Updated: 11/07/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote malicious users to bypass intended access controls by modifying the DNS for the attacking IP.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sgi irix 6.5
sgi irix 6.5.14m
sgi irix 6.5.15f
sgi irix 6.5.2
sgi irix 6.5.3
sgi irix 6.5.13
sgi irix 6.5.14f
sgi irix 6.5.17m
sgi irix 6.5.18f
sgi irix 6.5.18m
sgi irix 6.5.8
sgi irix 6.5.9
sgi irix 6.5.1
sgi irix 6.5.10
sgi irix 6.5.15m
sgi irix 6.5.16f
sgi irix 6.5.4
sgi irix 6.5.5
sgi irix 6.5.11
sgi irix 6.5.12
sgi irix 6.5.16m
sgi irix 6.5.17f
sgi irix 6.5.6
sgi irix 6.5.7
debian debian linux 2.1
redhat linux 6.0
redhat linux 6.1
redhat linux 4.1
redhat linux 4.2
redhat linux 5.0
redhat linux 5.2

source: wwwsecurityfocuscom/bid/927/info Multiple vulnerabilities have been discovered in lpd, shipped with various Linux and Unix distributions It has been reported that lpd fails to properly authenticate hostnames This could allow an unauthenticated user to gain access to lpd services by supplying a spoofed hostname It is also poss ...

NVD-CWE-Other http://www.debian.org/security/2000/20000109 http://rhn.redhat.com/errata/RHSA-2000-002.html ftp://patches.sgi.com/support/free/security/advisories/20021104-01-P http://www.kb.cert.org/vuls/id/30308 http://www.atstake.com/research/advisories/2000/lpd_advisory.txt http://www.securityfocus.com/bid/927 http://www.l0pht.com/advisories/lpd_advisory https://exchange.xforce.ibmcloud.com/vulnerabilities/3840 https://nvd.nist.gov https://www.exploit-db.com/exploits/19722/

CVE-2000-1221

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect