Bugtraq mailing list archives

Re: ISS Advisory: Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon

From: Emre Yildirim <emre () sgi asper org>
Date: Wed, 29 Aug 2001 19:09:29 -0500



X-Force wrote:

The line printer must be enabled and configured for attackers to exploit
this vulnerability.  FreeBSD and OpenBSD do not enable in.lpd by
default.  BSD/OS line printer daemon is running by default, but with an


> empty configuration file.


Hmm NetBSD doesn't seem to have it running by default either.

Everything in /etc/printcap is commented out as well.



--
Emre Yildirim <emre () asper org>
GPG KeyID 0xF9E4A1D1 (keyserver.pgp.com)

Current thread:

ISS Advisory: Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon X-Force (Aug 29)
- Re: ISS Advisory: Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon Emre Yildirim (Aug 29)
- Re: ISS Advisory: Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon Keith Stevenson (Aug 30)