English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.11406
Category:Gain root remotely
Title:Buffer overflow in BSD in.lpd
Summary:NOSUMMARY
Description:Description:

The remote bsd-lpd daemon might be vulnerable to a
buffer overflow when sent a too long file name
and then asked to show the print queue when the
file is being printed.

An attacker may use this flaw to gain a shell on
this host.

** Because of the conditions to positively check for
** this flaw are very hard to meet, this alert might be
** a false positive.


Affected systems : BSD/OS (up to 4.1), FreeBSD (up to 4.2),
NetBSD (up to 1.5.1), OpenBSD (up to 2.9),
SuSE Linux (up to 7.2), SCO Open Server (5.0.6)

Solution : Make sure you are running the latest version of the BSD line
printer daemon
Risk factor : High

Cross-Ref: BugTraq ID: 3252
Common Vulnerability Exposure (CVE) ID: CVE-2001-0670
http://www.securityfocus.com/bid/3252
Caldera Security Advisory: CSSA-2001-SCO.20
ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.20/CSSA-2001-SCO.20.txt
http://www.cert.org/advisories/CA-2001-30.html
CERT/CC vulnerability note: VU#274043
http://www.kb.cert.org/vuls/id/274043
ISS Security Advisory: 20010829 Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon
http://xforce.iss.net/alerts/advise94.php
NETBSD Security Advisory: NetBSD-SA2001-018
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-018.txt.asc
OpenBSD Security Advisory: 20010829
http://www.openbsd.com/errata28.html
http://www.redhat.com/support/errata/RHSA-2001-147.html
XForce ISS Database: bsd-lpd-bo(7046)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7046
Common Vulnerability Exposure (CVE) ID: CVE-1999-0061
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0061
NAI Labs Security Advisory: NAI-20
XForce ISS Database: bsd-lpd
CopyrightThis script is Copyright (C) 2003 Renaud Deraison

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.