Overview
The CDE Print Viewer program dtprintinfo provides a graphical interface display the status of print queues and print jobs. By using the clipboard to overflow the search field in the Help window of dtprintinfo, a local attacker can execute arbitrary code on the system as root.
Description
There is a buffer overflow in the graphical program used to view print job status in CDE-aware desktop environments. Since dtprintinfo is commonly set to be setuid root, this defect could allow a local attacker to execute arbitrary code as root. |
Impact
A user with local access can execute arbitrary code with root privileges. |
Solution
Apply a patch from your vendor. Sun patches: |
WorkaroundDisable dtprintinfo or 'chmod -s' the binary. |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
The CERT/CC thanks Kevin Kotas of Ernst & Young's eSecurityOnline for reporting this vulnerability to us and to affected vendors.
This document was written by Jeffrey S. Havrilla.
Other Information
| CVE IDs: | CVE-2001-0551 |
| Severity Metric: | 6.75 |
| Date Public: | 2001-08-17 |
| Date First Published: | 2001-12-20 |
| Date Last Updated: | 2002-04-30 18:42 UTC |
| Document Revision: | 15 |