[1637] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: SNI-19:BSD lpd vulnerabilities

daemon@ATHENA.MIT.EDU (Jan Kasprzak)
Sat Oct 4 04:42:04 1997

To: linux-security@redhat.com
Cc: sni@secnet.com
In-Reply-To: Your message of "Thu, 02 Oct 1997 18:51:46 MDT."
             <Pine.BSI.3.96.971002185136.3994A-100000@silence.secnet.com> 
Date: Fri, 03 Oct 1997 20:54:36 +0200
From: Jan Kasprzak <kas@informatics.muni.cz>
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com

: 
: This advisory addresses a number of vulnerabilities present in the
: BSD line printer daemon (lpd).  These vulnerabilities can enable a
: remote individual to create and remove arbitrary files, as well as
: enabling remote individuals to obtain shell access as the user
: which lpd runs as.
: 
	Is that also true for LPRng server?

-Yenya

--
\ Jan "Yenya" Kasprzak <kas at fi.muni.cz>       http://www.fi.muni.cz/~kas/
\\ PGP: finger kas at aisa.fi.muni.cz   0D99A7FB206605D7 8B35FCDE05B18A5E //
\\\      Czech Linux Homepage:  http://www.fi.muni.cz/~kas/linux/        ///
///  die_if_kernel("Penguin instruction from Penguin mode??!?!", regs);  \\\
//                            -- from linux/arch/sparc64/kernel/traps.c   \\

--
----------------------------------------------------------------------
Please refere to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe: mail -s unsubscribe test-list-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post