Buffer overflow in the lprm command in the lprold lpr package on SuSE 7.1 up to and including 7.3, OpenBSD 3.2 and previous versions, and possibly other operating systems, allows local users to gain root privileges via long command line arguments such as (1) request ID or (2) user name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lprold lprold 3.0.48 |
||
freebsd freebsd 2.2.3 |
||
freebsd freebsd 2.2.4 |
||
openbsd openbsd 2.4 |
||
openbsd openbsd 2.5 |
||
freebsd freebsd 2.2.5 |
||
freebsd freebsd 2.2.6 |
||
openbsd openbsd 2.6 |
||
openbsd openbsd 2.7 |
||
freebsd freebsd 2.2 |
||
freebsd freebsd 2.2.2 |
||
openbsd openbsd 2.2 |
||
openbsd openbsd 2.3 |
||
openbsd openbsd 3.1 |
||
openbsd openbsd 3.2 |
||
bsd lpr 0.48 |
||
bsd lpr 2000-05-07 |
||
openbsd openbsd 2.0 |
||
openbsd openbsd 2.1 |
||
openbsd openbsd 2.8 |
||
openbsd openbsd 2.9 |
||
openbsd openbsd 3.0 |