Bugtraq mailing list archives
Re: Linux & BSD's lpr exploit
From: capitan () sunset backbone olemiss edu (Capitan)
Date: Wed, 30 Oct 1996 16:54:01 -0600
I tried to use the lpr exploit on my machine which runs Redhat 4.0. It says "lpr: lp: unknown printer". It is setuid. I was wondering if you could set lp so that the program would work. You could do it by enviroment variable, but what would you set it to if there isn't a printer for the machine. Is it just not possible for the bug to work on Redhat 4.0? I would hate for one of my users to find a way to exploit it after i thought it was safe. My kernel version is 2.0.23, but I'm going to upgrade it to 2.0.24 tonight. Do I not need to worry about this bug? any help is appreciated. Mark Nicholas
Current thread:
- Re: BoS: Urgent !! Serious Linux Security Bug...., (continued)
- Re: BoS: Urgent !! Serious Linux Security Bug.... Henrik P Johnson (Oct 21)
- Re: BoS: Urgent !! Serious Linux Security Bug.... Timothy Brown (Oct 21)
- Re: BoS: Urgent !! Serious Linux Security Bug.... Tazman (Oct 22)
- Re: BoS: Urgent !! Serious Linux Security Bug.... Tom Guptill (Oct 22)
- Re: BoS: Urgent !! Serious Linux Security Bug.... David O'Brien (Oct 25)
- Re: BoS: Urgent !! Serious Linux Security Bug.... Alan Cox (Oct 25)
- Re[2]: BoS: Urgent !! Serious Linux Security Bug.... Mike Bremford (Oct 25)
- Linux & BSD's lpr exploit Vadim Kolontsov (Oct 25)
- Re: Linux & BSD's lpr exploit David Holland (Oct 25)
- Re: Linux & BSD's lpr exploit UDNet Security (Oct 25)
- Re: Linux & BSD's lpr exploit Capitan (Oct 30)
- Re: BoS: Urgent !! Serious Linux Security Bug.... David O'Brien (Oct 25)