Overview
The HP Tru64 UNIX implementation of "lpr" contains a locally exploitable buffer overflow.
Description
"lpr" is used to send files to a print spool. A locally exploitable buffer overflow in "lpr" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable host. |
Impact
A local user may be able to gain elevated privileges and execute arbitrary code. |
Solution
Apply a patch. |
Vendor Information
651377
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
This document was written by Ian A Finlay.
Other Information
CVE IDs: | None |
Severity Metric: | 7.50 |
Date Public: | 2002-08-30 |
Date First Published: | 2002-09-06 |
Date Last Updated: | 2002-09-06 19:12 UTC |
Document Revision: | 6 |