Vulnerability Note VU#722143
IBM AIX line printer daemon contains a buffer overflow in send_status()
The Line Printer daemon (lpd) shipped with AIX systems contains a buffer overflow in send_status() that potentially allow a malicious remote user to gain root privileges.
A buffer overflow exists in the send_status() function of the line printer daemon (lpd) on AIX systems. An intruder could exploit this vulnerability to obtain root privileges or cause a denial of service (DoS). The intruder would need to be listed in the victim's /etc/hosts.lpd or /etc/hosts.equiv file, however, to exploit this vulnerability.
An intruder could exploit this vulnerability to obtain root privileges, or cause a denial of service (DoS).
IBM has released a VULNERABILITY SUMMARY. Please see the vendor statement for patches and instructions.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|IBM||Affected||-||04 Oct 2001|
|Apple||Not Affected||-||09 Nov 2001|
|Caldera||Not Affected||04 Sep 2001||01 Nov 2001|
|Cray||Not Affected||-||01 Nov 2001|
|Engarde||Not Affected||-||01 Nov 2001|
|FreeBSD||Not Affected||-||05 Nov 2001|
|Fujitsu||Not Affected||-||01 Nov 2001|
|Red Hat||Not Affected||-||08 Nov 2001|
|Sun||Not Affected||-||01 Nov 2001|
|Compaq Computer Corporation||Unknown||-||05 Nov 2001|
CVSS Metrics (Learn More)
The CERT/CC wishes to thank IBM for their help in identifying and analyzing this vulnerability.
This document was written by Jason Rafail.
- CVE IDs: CAN-2001-0671
- Date Public: 11 Sep 2001
- Date First Published: 16 Oct 2001
- Date Last Updated: 09 Nov 2001
- Severity Metric: 9.84
- Document Revision: 12
If you have feedback, comments, or additional information about this vulnerability, please send us email.