Bugtraq mailing list archives
Re: Linux & BSD's lpr exploit
From: deraadt () cvs openbsd org (Theo de Raadt)
Date: Fri, 25 Oct 1996 10:45:19 -0600
there is a bug in berkeley-derived lpr, which allows attacker to get root access (see freebsd-security for details). Here is exploit for Linux (tested on 2.0.20), for BSD (tested on FreeBSD 2.1) and a patch.
OpenBSD is not vulnerable. This was found and fixed in mid-August.
Current thread:
- Re: Linux & BSD's lpr exploit Theo de Raadt (Oct 25)