|
Family: Gain root remotely --> Category: infos
Buffer overflow in BSD in.lpd Vulnerability Scan
Vulnerability Scan Summary Acertains if the remote lpd is bsd-lpd
Detailed Explanation for this Vulnerability Test
The remote bsd-lpd daemon might be vulnerable to a
buffer overflow when sent a too long file name
and then asked to show the print queue when the
file is being printed.
A possible hacker may use this flaw to gain a shell on
this host.
** Because of the conditions to positively check for
** this flaw are very hard to meet, this alert might be
** a false positive.
Affected systems : BSD/OS (up to 4.1), FreeBSD (up to 4.2),
NetBSD (up to 1.5.1), OpenBSD (up to 2.9),
SuSE Linux (up to 7.2), SCO Open Server (5.0.6)
Solution : Make sure you are running the latest version of the BSD line
printer daemon
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|