[1637] in linux-security and linux-alert archive
[linux-security] Re: SNI-19:BSD lpd vulnerabilities
daemon@ATHENA.MIT.EDU (Jan Kasprzak)
Sat Oct 4 04:42:04 1997
To: linux-security@redhat.com
Cc: sni@secnet.com
In-Reply-To: Your message of "Thu, 02 Oct 1997 18:51:46 MDT."
<Pine.BSI.3.96.971002185136.3994A-100000@silence.secnet.com>
Date: Fri, 03 Oct 1997 20:54:36 +0200
From: Jan Kasprzak <kas@informatics.muni.cz>
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com
:
: This advisory addresses a number of vulnerabilities present in the
: BSD line printer daemon (lpd). These vulnerabilities can enable a
: remote individual to create and remove arbitrary files, as well as
: enabling remote individuals to obtain shell access as the user
: which lpd runs as.
:
Is that also true for LPRng server?
-Yenya
--
\ Jan "Yenya" Kasprzak <kas at fi.muni.cz> http://www.fi.muni.cz/~kas/
\\ PGP: finger kas at aisa.fi.muni.cz 0D99A7FB206605D7 8B35FCDE05B18A5E //
\\\ Czech Linux Homepage: http://www.fi.muni.cz/~kas/linux/ ///
/// die_if_kernel("Penguin instruction from Penguin mode??!?!", regs); \\\
// -- from linux/arch/sparc64/kernel/traps.c \\
--
----------------------------------------------------------------------
Please refere to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe: mail -s unsubscribe test-list-request@redhat.com < /dev/null